Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:42

General

  • Target

    0b0ea872b5b3db77f359eb3f73fb6f74.pdf

  • Size

    93KB

  • MD5

    0b0ea872b5b3db77f359eb3f73fb6f74

  • SHA1

    86d8d8e4bfa2ea508b74be0c4d4006b5f7b61a7a

  • SHA256

    0f41e6a2afd0f219d7eb73d4c82711d9fec82e124a885cbacdaa300a6765c681

  • SHA512

    0518783adffa0afc034233958f7e84adf747ee9ae7a48ef41a4b84ec5c7e7ffb8228972121634bfabffe5657d61bd2986ef4c722e20d1b2275b8a38d931fb338

  • SSDEEP

    1536:vwq7rLyETVNSeCBt/jsv4pfm5PV0pheIzbZzc88rATNQ4VW3Kpbfo9Y1MWkpOTic:Iq7vyECeCBtgv59V0VzFzR5kOTPTd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b0ea872b5b3db77f359eb3f73fb6f74.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2624

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    5fe710f3af44cc0c330b4f5abf0c4deb

    SHA1

    627808dcdcdd7f66838c2c13334ce28d839ec9f9

    SHA256

    6045cc9add01577813684def322423b853865767ae15f75be5c59b8383801c1e

    SHA512

    62a16a9b226fff98f36299549682e8aeeb5b4511db75b7031b5b5db4ecef9e4eae999237e606a1b50cd4a0848b0096f080d4b797fc92f34640ab0f58f38e980d