Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

NEAS.d3a45...b0.pdf

windows7-x64

1

NEAS.d3a45...b0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231023-en
  • resource tags

    arch:x64arch:x86image:win7-20231023-enlocale:en-usos:windows7-x64system
  • submitted
    13/11/2023, 05:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEAS.d3a45f7bf4ffe9334459117c710f37b0.pdf

  • Size

    31KB

  • MD5

    d3a45f7bf4ffe9334459117c710f37b0

  • SHA1

    13fb8996ee09f6b30843ef7869a83d399b21caf6

  • SHA256

    6e425e988156cde409ad43df7dded71b0b5cfa377acf09c9612ad5f65d5d0560

  • SHA512

    0c70f0708d84206b1b07e53e272d9aec56ecfe18e48029d5f66cb94cc595782604a9f72483a739df917e99831bbe2458638ebd5dd62cb9bcb48ab42f3aa3453d

  • SSDEEP

    768:OJFmQoTCEtrfumsPbqlJ2N6V5dCPoaDeUsDuvGWVEOetz4U50YiO/:QmZtrf4PoaGDu/VHQRgO/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\NEAS.d3a45f7bf4ffe9334459117c710f37b0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2764

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7f09a5257d31301ce8078edb25be4e5c

    SHA1

    73f3140378c8378837a36ff7aba9ec013c347c0e

    SHA256

    d435bb9dd0904c956ce51cdaa45cef07df44a5de1ad84b66ee3a4aa8450c9596

    SHA512

    d2efed5b36116d2d326b490aa91ffc2169fd69d38fec32a44dd5c7f51354b79ac1f3eb552a0393e3083b807e1efd8809799b5901845ef367a8dc2f94b4df9787

    Download Submit