Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:08

General

  • Target

    60927000b05a8277cdc34e8a9ee2ca64.pdf

  • Size

    34KB

  • MD5

    60927000b05a8277cdc34e8a9ee2ca64

  • SHA1

    f9f27b1cfdd033f95e64d43f5176f02601e0818a

  • SHA256

    bb3250dccf42a5612359b3118960c1c86bb19e0c5c6ca95429e8a37f8f11e5da

  • SHA512

    cbe74f212ac55ed622280a14ebc5ba2cada26ee4ba894251008d0ab460079b4bec7aec2d0c927f7ee475bad79da59ab226c79b6b045bc5082f4c06b2af4e2099

  • SSDEEP

    768:+Go0Brr1sFHvEyleEUeNsqHdFoYZqwWxrKsv9h:+l0BjaeVeNsq9FoYZqw5y9h

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\60927000b05a8277cdc34e8a9ee2ca64.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1708

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    aa6052026c6c2b0da8bf446ecc86399e

    SHA1

    debad7af53f547d2ee0e46fdc06642ae4d794507

    SHA256

    ef65411151e90355f46c936861b05c5eff1851d43bfe570973d7c90108e1a0e4

    SHA512

    a242f0d935d4bd6425d7df17de54a8cd04cb9f117640bbd83fa8707ec449dd206c2c2f2961828d6f59b02fcd77ad8daf669b982e30ac15da0e0bc034a983c310