Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0b7f3c1f53...2b.pdf

windows7-x64

1

0b7f3c1f53...2b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b7f3c1f53f2f8f6ecb5f0ab0e32002b.pdf

  • Size

    83KB

  • MD5

    0b7f3c1f53f2f8f6ecb5f0ab0e32002b

  • SHA1

    535e996ed4d34bc25afd4c5479b31ffa8dc1c471

  • SHA256

    77b26ac79f700e053b2c821da48e4aefc85929e507deb34dd036228433523959

  • SHA512

    8a33c6b58541c7fb015367d07d8cd842785047adaa10d7e3c754be15b72a0314a571a796f6706d18f3334ef6ba9067320315563bab9f62a8b9043ffd78ba2617

  • SSDEEP

    1536:9moLHpohMNma6wtH8l9xVaO6JIPo3XWkNpOPaWeTX8IzlvZws47ybF:sOahATH8lgOmIPo34PkTsKxZwVi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b7f3c1f53f2f8f6ecb5f0ab0e32002b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e3cf9ab02e698c34d684b997388cfa1

    SHA1

    07a8930054a6c9270b3621ed85de4c8339fefa80

    SHA256

    9915d27ee45296734bc9601974ac8dcfbbb16e72ebf45aa9ada2ecb034e7fc80

    SHA512

    d4c42c6322c0183f82cb63076e606d0c1ecccb3e0be4ff2dcd5c4f71b2cb80fe01802c7cd296106578ff230115b4909c2b93fba26ed7a26d806a161f3068281e

    Download Submit