Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:08

General

  • Target

    107d52d57187ece2193b78ab4e0e14bd.pdf

  • Size

    69KB

  • MD5

    107d52d57187ece2193b78ab4e0e14bd

  • SHA1

    d8ae01890e2fb77e5b28f10d1f44c475bbf39b6e

  • SHA256

    c055ff909220833e99de4afc1386e3cebf83dcb72a2506d747b850d4202bde0a

  • SHA512

    2f1148937e7b6b69bca7c3badbbaa2750570bb9e8c63e150ee5f1b9159b28525590bbac5b406c0f1253012c544162c995940d1f44244753264d04e25200e4460

  • SSDEEP

    1536:6XGITP02TOygmBRFGKUUUPd585DEUcepvyVL8eq3QGCjpuWUen4FwWXpO/ngiQ:rI1SA8bxPS0epvyVLIg9jpZ0Y/W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\107d52d57187ece2193b78ab4e0e14bd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    cecfef354a196ed945a7eb8445b0ee4f

    SHA1

    5b29d0a187d937b7a63839013bf5ee91962d004a

    SHA256

    9387b0d947151e8bd6c89e33cc7d4c4110c3c50826d0e196f52e8c1a6a8a190c

    SHA512

    b9d1d73669caf2fd1cc922acc98dbe815871c5c50d4cd36de5333b29196f1dab35cc3f22e21f08bbb33a8abb2a1129634a8391f607d6643f7d1178d40931891f