Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:27

General

  • Target

    63f045e203dfa770c426928d81114097.pdf

  • Size

    35KB

  • MD5

    63f045e203dfa770c426928d81114097

  • SHA1

    9bb7be27c70a44ff82227f4e187a5459a478b0a8

  • SHA256

    3d7c836376d279f274dab15f5fe3ef02c9bdcafa09fbf1401580fc08a10b38e7

  • SHA512

    5a4da6fee98c7ad01f4808debc18b7ccb2da4dcfcfa383095dbc397fd015e2846815cf436c912ecc104c59395aa801ae88b4dd0bff7f8d64333e305693fcfa39

  • SSDEEP

    768:GHTb9VzWstavETxMKwB+gBy6rMPncCjopQ3CRhSbGRTjNtSP:kTb9VKiMKwBPY6QboppRhRRTjNtSP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\63f045e203dfa770c426928d81114097.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2904

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    59c54a56f74ac24d50ad601eca7e1c62

    SHA1

    cf5a8305f0a14a511cf164662aaa2ee5d85e5216

    SHA256

    7adef71530612373c0d4d343972e7660fb8dbb72e0e5e9b70a6221b76a797f98

    SHA512

    fb1d12cd9defcec3316c78c3dadee06786d74a83daac6a8d7bdc4eb6d5d40f1377c945426432c58dcd47baac9443c53050ce22ec67479fe8cf9af148afb4d912