Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1623bbc84f...21.pdf

windows7-x64

1

1623bbc84f...21.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1623bbc84f7be20a1d9c53fce0f9d621.pdf

  • Size

    76KB

  • MD5

    1623bbc84f7be20a1d9c53fce0f9d621

  • SHA1

    8f5db4b18dfd40299f415f1923c781c8e1af2835

  • SHA256

    c339cb982863364b700aae0e1c8a89d94d2e19772ed7af00f44cff25cd4572ec

  • SHA512

    467e3470d38f9d5f0bd3b9591c50a2545427849b7136bbb871a2567566a35dc96683c1da5679c2c83101e9c48992eafc6029ab02b737fcefb61166ab691aaf29

  • SSDEEP

    1536:liAgPoZuzvEsvFYPawnj7wbW88HtIWH7ntN2O5n8TMWepOyBVC:o/oZ0vTqxnj7wbW8CX7tNxyZya

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1623bbc84f7be20a1d9c53fce0f9d621.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d507cbcb68d1d9d52a32f630ffecd7b0

    SHA1

    3bcccd538095c0659629ce2753b876f14365e6d5

    SHA256

    a57fec04fe86c926a9206401b738509e57bcd56876fc59f8604beac0c08a42bc

    SHA512

    3b06749d645900da77d658ece6229f4c9a5a089527db059a6495f35afa4bad3c68bcab0401f1a36f7c07138c4ed976c17e611555642f6056f00ba16d35634d39

    Download Submit