Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:08

General

  • Target

    1084f15852034f9421cceea34fa33bb5.pdf

  • Size

    76KB

  • MD5

    1084f15852034f9421cceea34fa33bb5

  • SHA1

    5c878f0f13cd013c80a60083e680926ec6cfb4a7

  • SHA256

    df319de5306e08257ebc3682471ab9286cb12b39db7e25bb23e3c40e2f65a7b0

  • SHA512

    3d5224dbee20f3b4e4ad690154012a31c2e1f791c79ad25bc4021a1a2c9d6ccc25dd8c00f53247f63031a3a4476f84b14c7081ff66e76aaaeda31dd6b20552c2

  • SSDEEP

    1536:j01vajsko1Wq6ZYUoQfdSJqgP8nqHatWWH9pNHb7Hh6zWxApOGQpWx:o1v/kocqxUoQsggPiqHaZXl3B6c3GOc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1084f15852034f9421cceea34fa33bb5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    16b74ccddcb8592a3340041c6f4cf735

    SHA1

    90e1f6511dee84b293bb264ef35133aa93e8cf02

    SHA256

    ef373b156ce7970028d8cbdb1f1780f89b2ea203964021a5ac7f60bb149a15ac

    SHA512

    6c47261f2a175754b5d9d7ae72dc494b92305a378f5c04bd6eec1f389131da545d41d4df840d1e4cd657c511d8663963e2e2b35db6223555a4c51d15a312c4b3