Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

23ea355222...ec.pdf

windows7-x64

1

23ea355222...ec.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    23ea3552220df5fc89c67e4bc6b0edec.pdf

  • Size

    87KB

  • MD5

    23ea3552220df5fc89c67e4bc6b0edec

  • SHA1

    b563630e506cdb216341715e5855e2a806a6375a

  • SHA256

    f2d3c110f0c04090054199155323a758bdd1fbd2903379e971d4a5ecf6ea5303

  • SHA512

    ee98cd57ab2847c44b4cd97299e0c5fc52692895e453bb8b05f0fab11966c5a2f11e61e900c9da005c4d2ef60f48dbd1d765b1fdbce5a0a72701920a209a9698

  • SSDEEP

    1536:ZfXrcBKDqRdBSk2yMbWveikbvBFsn7DOEOjCH/vgn9IFdjAvAvEfWxXMJlbNVbQM:V0/B8avEZ0O7jgG9IFFuSEA8JNMqGl+X

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\23ea3552220df5fc89c67e4bc6b0edec.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e866d243b31ae15092d411da81d38549

    SHA1

    faedb748180cbd9dc7fd87f06984e11c65a0cce3

    SHA256

    4ee3a5a0b936459d3fedc8d1dc9f274c153b511f0ae361865803ba33ee11ac49

    SHA512

    24e5713e941337f043e879e22f0d3b1bfb886a25f0264916a7a0c5ba7568231daafedd473e9cdaab3a814be7166e62524a0f95f45be307c54b3f49d4a8c09e95

    Download Submit