Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

57f56b1670...bb.pdf

windows7-x64

1

57f56b1670...bb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 02:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    57f56b1670f2709d32384eabd2e7f2bb.pdf

  • Size

    67KB

  • MD5

    57f56b1670f2709d32384eabd2e7f2bb

  • SHA1

    7bc9104b518146007d0c8ac57fc56ca7ed5e4a40

  • SHA256

    5d3be54879aef802c5c83a32d9217711721b06d518c24a6c753b2b8b9d9e28be

  • SHA512

    9c243d8cffa46125b2ab4ad7b406f2f84d32ec0a5668ff2f1b736a8c4f2571c63720f4c01d271c0b774cfe31d89686eb21705d0f9fc0f5e0768cadfac7c3b890

  • SSDEEP

    1536:F9qx6uF4OgiTWezxHkGriraFL98ZuUBUv2YhNhWX76U:s6l9eFkuiOFMKv2Yh6XR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\57f56b1670f2709d32384eabd2e7f2bb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3048

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e12d7d2f686040ddd5a3dc0dd544643

    SHA1

    b033b65ab4db0b0dc3c12af90843d6816e176624

    SHA256

    fee02bea7356307723988169bedd76c04afc2884558b10e4984be3358d4df829

    SHA512

    db99e8c01310b95fe87ee180dc592137caf0744799231ad8e4a54e9e2d4d1a1ddd42362d4da58d34e27b61ef8ca9ab81f8906c50d6a98174c9adabcf99159c8f

    Download Submit