Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2ed5023eb1...d6.pdf

windows7-x64

1

2ed5023eb1...d6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ed5023eb1bda54974ecb390e81d7ad6.pdf

  • Size

    83KB

  • MD5

    2ed5023eb1bda54974ecb390e81d7ad6

  • SHA1

    9104e726d61c51ce89157d2638ec6d500e8d08e8

  • SHA256

    826ec3546141eeb852983e9f19f25252e42f61c610184ca6038800de32d3fb17

  • SHA512

    7ccc2a13d6e65a714a183858a664445e1b91bbf1bdc533c0e66bc0704e0d6a41897ff08859b764731d7d48ceaa22eb0133e1b3b0858d646bdb59c59270a1911c

  • SSDEEP

    1536:sBMlQ+oGKsDo4Og167f5NMgangxzQBrpzWGUfgmxue12EkpHWyE3u79qv:siqCKsDoQ1dgktW9vxue1Kpgu7k

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2ed5023eb1bda54974ecb390e81d7ad6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    39aed2006b5d8d9dabde78bc7989f95a

    SHA1

    84a6efc115dd28306470fa215228a7dbb712655d

    SHA256

    5d646bff29aab480fabba2136907cfd4f54ba14d3ecb2768f00409f5033033b2

    SHA512

    6b12b4a9b729cfb99423499970c8ad06c4062b01f65f19815de814632216f803c490062d0504ac423515ae0ef787c740d903e2b34a42ab1ca0226ec218ea7fa0

    Download Submit