Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

241a0b7413...2d.pdf

windows7-x64

1

241a0b7413...2d.pdf

windows10-2004-x64

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    241a0b74130613a2257a839fd6be112d.pdf

  • Size

    85KB

  • MD5

    241a0b74130613a2257a839fd6be112d

  • SHA1

    b0a0debf7cee1808c7b4375269562d9d5bfb4aba

  • SHA256

    a8543faefdc716d42b5f966ff6df608d50a89d2dba5502a70bf3916b841a188d

  • SHA512

    34a2589190132d4b5e70a703ac31f192ccda7086eef46d78a3e612b7c4af6ae801911c3c7277df503e43cd62921487935849a350d3c5e433ed97f08fe0e84837

  • SSDEEP

    1536:U2DSBqfojPgds7hbUmV7XqzYJsUXiwb/1KhWspORGWOif93yGKl4QLP:1mBR0noXgYJNbAYREu0ZJ7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\241a0b74130613a2257a839fd6be112d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eff0899524e7911a80ee991f57ecb902

    SHA1

    abe3d0aa2119f755e93dff92a00e99a29a174ee8

    SHA256

    761e88f128bc39fb06d1dd1295edd985d39966860a2811359ae40513478a6a40

    SHA512

    8e375df338d233442868f609abddc1921517e497410b00f1e99cdd08505c39c370be080902ff0e4e22726ff7434f289785da8e2eee112f50ef954c9fa8e7a16f

    Download Submit