Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 15:04

General

  • Target

    49c5a1b151f70376d7785a47c1df4649.pdf

  • Size

    195KB

  • MD5

    49c5a1b151f70376d7785a47c1df4649

  • SHA1

    d6609c3aafee79a97031b3d67e309306dd4f54fa

  • SHA256

    d38be8fd466289c4c254a108e7d05fba643148d34f48bb36511d893fc1679ee0

  • SHA512

    95c1dfcc14394b09f00f1e12ecfb7ff2977294b6f8c6d985d006861003cb7d074cb45986c0755f28dd5c2caced6f4a1ba89185e9fd9eac336d6d5e2fa293944f

  • SSDEEP

    6144:qKb0TjxvuIDu+ZGHBMcYIuDzmZ/Xeu5qo5MKcy:mTjVn1uBCqpuSqof

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\49c5a1b151f70376d7785a47c1df4649.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    552cc51e5442618a8f91a6266a9616a7

    SHA1

    46cf23615b6ca441338e2f3dc2c4495074d15606

    SHA256

    dc0310047b615b19493824e56ecf6549c9d8b380731df38abbf73dbe9fb243fc

    SHA512

    ede9f8d14c16ecb0b5ea9cab764185492401be5af46ad1fb17020294dbd87d848fafd992d8eebff3a542b39345c76bda6f1cbd050d14d8be2461cef58e644193