Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2eceb4e6c0...67.pdf

windows7-x64

1

2eceb4e6c0...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2eceb4e6c0e72203a4ab03513f209467.pdf

  • Size

    75KB

  • MD5

    2eceb4e6c0e72203a4ab03513f209467

  • SHA1

    7eb15e3aad1f12fd21978d7cc99f4746e8b04df9

  • SHA256

    552d683174edf669a4d76a653f1a0c3de6681f374995b62eb728d859614fc129

  • SHA512

    38dd241c6548bd007d78203277edde5c8cb2410abab30965f7d38736a49f625dcca34a0f1ffc817f7c51e5c0dc461e7d5398554cd00424b7ee264c21fc4dd7de

  • SSDEEP

    1536:m2n8FhpjkWPCSdNwkKZtmprs9kwjOWnjj33KUgWdPwsWXpO/YtM:G+WhfKb39kub4W+0/F

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2eceb4e6c0e72203a4ab03513f209467.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2112

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    44e80d707c217433d90b68b971d98554

    SHA1

    45edc0c98a6bee6feb7e83dfdf215bbb249b4d2f

    SHA256

    e385630b19c2ff141584fd5bc162fc0519b013c6d3e65abddc8db40daeb2de89

    SHA512

    9a4bfc1ad6514b28330f8855f8fb83b113dfc9a7076ccd26b11dd838eb2dfe0c784ef86cd9e2e89d3ea5c6784632326878a7deabbd25ed35e976fc2139c57aec

    Download Submit