Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 15:35

General

  • Target

    50aa08d19e66e73acd6726ad22ac2ba3.pdf

  • Size

    81KB

  • MD5

    50aa08d19e66e73acd6726ad22ac2ba3

  • SHA1

    e964704e12ff61cb4404d0e5adc333cbf6a336e5

  • SHA256

    b6f28a9b93dd7486ca3bd38bf6987c424dca68bf7ffaa0e1aa2fec5aeb8f458b

  • SHA512

    dcb9a5bddda718642d64005ecbcc8f0e86cb979072739212b3125777178f52d07de2b0df225c50d66caa6c657a2fc4ff69e2dd964089defa26587d05472a3e7c

  • SSDEEP

    1536:P/UCSNz6fWC/+gCC424ZO83/O//0X5sV1MWUpO7H2p/qW+4sQofj53u:GdMp/nCC42oO83/ev7H2p/uQorA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\50aa08d19e66e73acd6726ad22ac2ba3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f8206a92a46a2867f83455752eb94c37

    SHA1

    f223a0c1b0b0565e196a5ac3f68ac4d880e52657

    SHA256

    427a3f90ed720f3f60b0aab3883c0020a504abdd69fe8df1e9ca54880e429beb

    SHA512

    b29931d85a46ece57efc70b37fc65f38e3c5c44641e7f97faa2d94775c3b5e10cbe65741a8f1ca30360c616e730c2912f48ac4d14a3b914b3166516c2bdc7984