Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0cc0ce2ab5...8c.pdf

windows7-x64

1

0cc0ce2ab5...8c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cc0ce2ab532ab0803642ec8dbac978c.pdf

  • Size

    71KB

  • MD5

    0cc0ce2ab532ab0803642ec8dbac978c

  • SHA1

    672939d037602b4d782492fd8cb8ae49d79575b1

  • SHA256

    dd52c5b544f4ba8e3ba6a2f9267d9fd0cdbf48f5ad1f17eed63089f156bdf35b

  • SHA512

    a1a7a6958663ba57beed60f969f17183f0ca4c0318519a215d23de3381e9b01f2217aef295626bb565a13e1f308d582a931d2749deac8801bc8f567ebb5e4606

  • SSDEEP

    1536:bxk/ikZnv4dtV6lmwDfb4N6WThl0dtQWspO2j6S:lk/r4T8lm00NxvQt72z

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0cc0ce2ab532ab0803642ec8dbac978c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2988

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1140b889d2d7aceaea55e645f99278eb

    SHA1

    ca7799922de07ee2fe45645b0b3c7ce2d7e569b8

    SHA256

    7364f646d567e2e02fb8131c62a614e4cd157475f64755fa1fd0138508cfde43

    SHA512

    14b414326bfb3b23f4d1dd2d4e8de4d6b63c798f6cfb1a41fecd6da7362ea0fade6fd195d34131ea268f8323bf479cd7c34fc0c49a9a7fd792bcdc5a459f6de4

    Download Submit