Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0954721023...1d.pdf

windows7-x64

1

0954721023...1d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    095472102309c6b692ff187193c23f1d.pdf

  • Size

    76KB

  • MD5

    095472102309c6b692ff187193c23f1d

  • SHA1

    2c96058b6d608fecf57d13fc955700754431dfc7

  • SHA256

    b01720dc446ddef1755853b9f3d7d1296449dc69ecf8771483a53d0b864b2daf

  • SHA512

    9a24f0d187be6d7c12974b0b75c8ed308c91a0f469e834412f9c738a6af809115349ba850f3e04a027de14b69d911049d3d13bb2ef6f467cf42be113100a9f10

  • SSDEEP

    1536:OpH7bNr4d3rmxnsfNr29upqYTPXkPcKc1BrWQpOCoWRHNSOXS+D6tD:GHW1rmx9jYTP7KcDWCxpS+Y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\095472102309c6b692ff187193c23f1d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    217bb1c2ad7dfcba63328ab9f44bf194

    SHA1

    0806c9bd4f80bf3a84dfd8ae67f144c23511f70d

    SHA256

    e9f399908a17e4f067ff4628243a568441156980c8e368d53ce050b26008310c

    SHA512

    8580a4a803631e72db3256f532e87ec87c02de8b263155140def83fcd57da4a03aedce0d69d5c80880f8836dbde5ab9f012aa74b5b2ee7c2a5f4028ad7fb52e5

    Download Submit