Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:44

General

  • Target

    66b0c87300e8f5b58dbd7b2e7a19592b.pdf

  • Size

    35KB

  • MD5

    66b0c87300e8f5b58dbd7b2e7a19592b

  • SHA1

    22f6d086cd0191790d37b1a754324859db1d590f

  • SHA256

    f475202c61d4e5d2c0b8010fd5b6815e644dc4701d46eabd4041a4c4eb3486e1

  • SHA512

    d0aa6a739d2524bcf202ec3d392ea1495a76b9b9f66176b5050e9ec1c57de50a467bf7cadee97d9aab796b27bc0c6d5b19268ce800d8ffc827fc84e6354d973e

  • SSDEEP

    768:JsYwnyvmyT1iKst0YTRXcjDvZKVxb7aFxu6llo+I9:JLPeCW0qRsjdKVxb1f+I9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\66b0c87300e8f5b58dbd7b2e7a19592b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    a78a1c075dcfd5f27801ed3b93dc0aeb

    SHA1

    7cb5394a240dc54e9d3de42b39654a7c5fe401b1

    SHA256

    d1c0edc1683da8eac87cc31ff5b4c3b815c5e8674f5b18ce899904753264dae8

    SHA512

    88679838984ec0bddac799cc6e54c64be29aaf52e24ecf61126026e49bdac40fc7f8021a5634a7bdf25f086eaf2bb482c17d74ce63296e528b47fc1ac0e7fd1a