Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

129359c5d5...d4.pdf

windows7-x64

1

129359c5d5...d4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    129359c5d53fec3ec3260ec3600576d4.pdf

  • Size

    69KB

  • MD5

    129359c5d53fec3ec3260ec3600576d4

  • SHA1

    7c988ee43ba4488e3cb53be1278d447be10a8f4f

  • SHA256

    e2b25c1609ae9729cdcfb17f216af94f7787c92925cbcaed28ee4dbd197e739d

  • SHA512

    4b079a2c1d1ff6046104f4984393cda018ed6bba7a2a2c5f2e0b5ec6a71e0378168a456729d56d3869fbc2af7ce4f11d6c4b9ec5d989c599f87a2950f9b9e20e

  • SSDEEP

    1536:LOl1k3kghT+aUYdYGtPhbWOpOaZ06AvdWnWc7VZ+tsJd:yl1ghKYlPGaZ9AvdWBQY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\129359c5d53fec3ec3260ec3600576d4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2112

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e783e84a3476c8753741b41a9dd9eb2e

    SHA1

    3ef0d1820134166eec6d0af3018fcd33d9368e74

    SHA256

    3f238bc15a3ad0ab49b192cd3f29f9f35cdba440aef493ff21fc66a5d1c02049

    SHA512

    0fefff967b2f7ad8dfcad075dc652b24a24244ed0f189d615f45329f8fe7d20918bc98d30b184aad1a3cf65d905f236b33014bcf263fef1fa093fc70ab8b95c8

    Download Submit