Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

6b78c902b3...1e.pdf

windows7-x64

1

6b78c902b3...1e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6b78c902b3d1f1d470ef62c702a4cb1e.pdf

  • Size

    87KB

  • MD5

    6b78c902b3d1f1d470ef62c702a4cb1e

  • SHA1

    03ad09d11b313b64e88667e9fbf36773ec20720e

  • SHA256

    186acb8067cb0782117c34a561f511f279fec0ae80e69b809eea5ee8bea44b95

  • SHA512

    b71f7e409225a8e7d30c0e913336e7a0d6e91c79b5303cf44f49d330e4c461e04a48e2986218ddf5231c1584c6214a50b314e97021b09e687796c3bb531343f6

  • SSDEEP

    1536:GuXe/W5br9LuZ+GhYg6Vw5Yrw1muQ5X+sfquGwgSpfeC3EHyqD:nYWI5+gJtmZ5EJar3g/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6b78c902b3d1f1d470ef62c702a4cb1e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4f620d6b16c4641ebc9154500fad14e6

    SHA1

    d9fd41887b7b7fa327b6c5f39b98a16f15ac3b8c

    SHA256

    1d9c23fff6a9b9a84cbe8a175a10b9e3e4467ac18d573b522d901467c5159441

    SHA512

    b306c9125106c224319e160a03987aa393bf9e2b2dd6b8d35f8de509cd5b6f6218e7f139d20d7765a436699876be11c7fb1d7b0d827bebd523f55adf67122df4

    Download Submit