Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

342754c64a...6a.pdf

windows7-x64

1

342754c64a...6a.pdf

windows10-2004-x64

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    342754c64a38670911fb88440d17cc6a.pdf

  • Size

    35KB

  • MD5

    342754c64a38670911fb88440d17cc6a

  • SHA1

    d7c0c3fbbce14764e9af749a00d34c2b60d581a4

  • SHA256

    0fb9e6bfab833fda76bffb476a8d4840422293334b4335b5c360da3d7f6574c4

  • SHA512

    c7466557d78952a09b8bd941280cd0739d95f89c7ea799bcada526eb8fe5abd697446304103fa746804c9aa12407bcbb8af1106a5e3d2d890a6734d428ec0047

  • SSDEEP

    768:9QJjuuGfj2sQYhtGL3s2eDg0Hc2YIXLk/QbKDWsmSCnvdh:9GuXtGLS82Ykg/QboDmSSdh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\342754c64a38670911fb88440d17cc6a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1d6ca23886c27d8595842863b381dfa0

    SHA1

    ea53cde00a5be03bbee901b086eb9a2bab1e5fbf

    SHA256

    f2aa5d455bc64b7765bf1129fbf4c14ac08e98beae8f78ce4f2bec26d1db3efd

    SHA512

    080248fb78672a5052c6ed476979a2067ad993024e0379bf923608dafd49f990ca20e206d44508731bcbec778810bf243f3dd7d17a73e579ec86f5d4f985f335

    Download Submit