Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

22d1ec9383...e5.pdf

windows7-x64

1

22d1ec9383...e5.pdf

windows10-2004-x64

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    22d1ec938323afef382abf472d3178e5.pdf

  • Size

    78KB

  • MD5

    22d1ec938323afef382abf472d3178e5

  • SHA1

    b29d9646d06cf4a2803273dc03540bb19aa633ad

  • SHA256

    505fdef449750ae99ee574191508502435a77ccd0a7854bba93346fca4f1cbe7

  • SHA512

    bde5280fa9a51543647c61f7b38afac1a6ab33ddcb47d99e5bff5f519c78be14fa1780f83dfa8ea8666b9f7a9ca3a82366693b1429a0d0db70417d77511a6ed2

  • SSDEEP

    1536:PlodFfDgwxI3cDh2mZRfTk6Bbj7YWMrZzAlPL4ymWcpOT7UyMsJ:tovEkAcDtZR5vwFclPkyFTFJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\22d1ec938323afef382abf472d3178e5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5cbfd23aeb236105bf0701173cafe0f0

    SHA1

    36afca8301b3da17dc7add85562629b5755a5ad1

    SHA256

    61ee5527a79b7099cf87bd7a1a068c5c34086433fe736581c40b39fc03c7420f

    SHA512

    c83be8cc2968c250ee3c11b75428b3ce7317c37def6b012d77f038c61a7831f9fd563c813fd51ef37bacfcbd622db7a8b08f7cd4c72f6a4fdd2dcd612003cacf

    Download Submit