Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

8f8a3a105f...a8.pdf

windows7-x64

1

8f8a3a105f...a8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 12:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8f8a3a105ff95158348db9e80974cfa8.pdf

  • Size

    71KB

  • MD5

    8f8a3a105ff95158348db9e80974cfa8

  • SHA1

    46bd1591fea2e45a81f109ecc3215b8ec0fac279

  • SHA256

    34ed94e5b3733899e8c2c59ce3ff9c5b7e1ab6005d54e39a83de57f92c049fbc

  • SHA512

    58afc49e0cc090fda2d2950785d2e44e43158dc92d278d47de1ab8eae6d1f77dce0aae89925c48445f720056ed9c55a2dc6a775d95c8e20980ae6696fb2e80fd

  • SSDEEP

    1536:Qhgl40IF4iEC8qVE67C+mUiAagdEZ7WTKkb+mbyAWLdVYypO/mH:H40IaCVp7CRIagCZ7GlcdVYIOO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8f8a3a105ff95158348db9e80974cfa8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    86f90a067347f3351156aab1ea21084b

    SHA1

    186b9f41176b6ca4e7eeb8064f52df95c27d1348

    SHA256

    c9d23a2bda7c6f8edd2a857bd3a91867cc2e72024d9d64df2b4c80427b0a5d77

    SHA512

    43223e3542081522e800a60a71441f12654093e94a0e94d0fc6ecf93882f34de9d0ff38bc7390a1c88050eb7aa55a06f0cd5acfc57f8a51761996db292b888af

    Download Submit