Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

294015c92b...d3.pdf

windows7-x64

1

294015c92b...d3.pdf

windows10-2004-x64

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    294015c92bab75a2c6414fdf40ffb4d3.pdf

  • Size

    88KB

  • MD5

    294015c92bab75a2c6414fdf40ffb4d3

  • SHA1

    0c002259b1fde159a28e10a30cb296a09c1203e9

  • SHA256

    90c8c86f513cc9ffdd0977d0d8d330a8b03898dc7b45708a1acc8dab879167a4

  • SHA512

    3b24b6c1b8377250b1046911935431767034b6a32ba3c47df7240d03b7c14f97d9abc5a12bb1151faf83b008e6a7dd9fc76ca65db8701f5665a99ea3159a4fb6

  • SSDEEP

    1536:5dRDk1XmJyDunb0ON7541ZPa7aqLDXf1/lF6jW8+qg4WepOZg0fm:Zkxm1bhNt41ZPAaqLDf1n6L+qgFZc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\294015c92bab75a2c6414fdf40ffb4d3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e300d12fcc1fa03282b808c91f86e6e8

    SHA1

    f23b85c974f13b72533c05b6193053ca6e1a0683

    SHA256

    8f9ece2358180a07f653185b0917426367e415a6fb7874bf3a863955edfbf197

    SHA512

    45f35b875edcf26dd4bf15765d9559d1ffe1dbcf51336f93fede0ce2848126dc5f00cad7a607b9292480f84cea3cbcb1616e73db3b7aaa604c7985756b9052c8

    Download Submit