Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

376513bce9...06.pdf

windows7-x64

1

376513bce9...06.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    376513bce9c85f409bbdd95a314c7c06.pdf

  • Size

    82KB

  • MD5

    376513bce9c85f409bbdd95a314c7c06

  • SHA1

    5b3d9790a56ffe21cf044363a39011995af3596f

  • SHA256

    a900f2f0913d9a028bd5d3b6ea6454e2234c9b65a5f6f6cdb160e19691609d79

  • SHA512

    6d3cc2e794b7e7e8698985fc4bb0c4aad0a08cf9334cbbe7b383a7dfe9b95c442a82eeb45d52a16760947d3d7dbf0d41a257672e1539892f7f60629b2a2d2b28

  • SSDEEP

    1536:BYRl9QYUS5M5uHR8nnaJlSiervXNJQLnv09Op6W58KHkhWspO211N:mmYDMs8aJ8ierrQLv0op8KEQ2V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\376513bce9c85f409bbdd95a314c7c06.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    70f3febbe0adf168a9118200bcdf1ad1

    SHA1

    5a5365e0b6e2f801c869be5340ed4c740d843734

    SHA256

    1439ff99e99b455368f93a00e214c5f0f31832e2e971f2822ee545b399663dab

    SHA512

    71b83fef61d8128669458f9fe464c721594de1e70844d196828adee7e72fcfcc743a24ffb681efc40c9bbcb4e7e3d3d53f59518f3dcb6de6d286bcae0f14dab9

    Download Submit