Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b17da21414...6b.pdf

windows7-x64

1

b17da21414...6b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 22:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b17da214144230ffddeca507416aec6b.pdf

  • Size

    84KB

  • MD5

    b17da214144230ffddeca507416aec6b

  • SHA1

    509eb70e1c974ae202582fc6e6b57b7c7ac0f6e4

  • SHA256

    7357b751b05d7e036b65ff54fdcf180bb7009bfaf4f444aba3ce82d1b5cf7f98

  • SHA512

    02860b293ed107dae9166987b07272d9ef4d36b78c8c7ba760fa5c89446c49aea2e3a8613a84fbdf09e18eb15fd49db122977babd6be6b195e9c4da72eebfe2a

  • SSDEEP

    1536:jcgIJNQzCobitIvWi7sqaWOz5mi6ps0RdWypOlWWxuVRW4ZNfcMI:gwzCHRAfaWONASlDuDW4ZNfK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b17da214144230ffddeca507416aec6b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c245837f05c289efc5f9abf9e0d02232

    SHA1

    6e46ed22106ab3bc5605b3be8c288a60d6526086

    SHA256

    dfe2dd2e8fee03ebd8288b437563bfab9b11a1c736790ded355191bee01c3d2a

    SHA512

    554a11c63aad4ca4ff6f01ae2736730af6974b2988cd7f2d1b3cca8cc87120037368e548c402fc53aacec0088774007cd5bc0ea9ed393766d852430b57c19247

    Download Submit