Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2ecb16bdc8...e3.pdf

windows7-x64

1

2ecb16bdc8...e3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ecb16bdc89fa83b3c890c80f96d60e3.pdf

  • Size

    89KB

  • MD5

    2ecb16bdc89fa83b3c890c80f96d60e3

  • SHA1

    014813d76e1ed083e650182ec575f93598b0285c

  • SHA256

    cb5e019b549880d0530385d77c9ca57ab96d1bf911ce937e1ea8985149e913d4

  • SHA512

    5bd955255d0b144e06dd2fdefaff3805bfbc1a1b920b2b6053706048066447afd97695d8e8ca4a897759864a2e5ead4b52ce7342b221159ae70d5f5345bcbffa

  • SSDEEP

    1536:TRKbPZPof9IY+xKlnCQ/p+RgYNwRHSnLcRGiQM0iMM+Wbcs1q02m9WWUpO71Qv:QbPZwzpnH/p+9Nw7MMRcs1qfm9h7m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2ecb16bdc89fa83b3c890c80f96d60e3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1716

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d17a7c9f1e9e9c8b29f920b31653e688

    SHA1

    b4dbebd98fd0ce267f0d3c967176bdd7124fb7d5

    SHA256

    73e40d4ab3e803400ccb01d0fc1cd295f0fcf85fb028a0f3509aede97346c9e7

    SHA512

    03f02a80727c605e54b71e9f895d9543fa34ea7bf72523df17f9ef2b0f6ba57b8d5aa3462a6ee2fa9798a6ffd600676d1308f59afd60de8d82dbc4429fb018d6

    Download Submit