Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

91055799c1...42.pdf

windows7-x64

1

91055799c1...42.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 12:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    91055799c1ae7799aff91f16db253242.pdf

  • Size

    85KB

  • MD5

    91055799c1ae7799aff91f16db253242

  • SHA1

    be963fa9693b0c72c07e30a2790527b5f8a922a9

  • SHA256

    12c8ed255180c75a78f9fb151dd8c17fd7492c99d0f8d26a4bc69f51ea9ed37b

  • SHA512

    f7b5763fc4004382008940e5ad4084aace49bb73106692b15ebe51ebebf1dce8c27fce49edca95a99c98eebb38a8ab41bf62b4c03a1f033970ef7f7a67591719

  • SSDEEP

    1536:ckVgMsYaiv3XBoDHp2xS+Cbwp3ZQUctaIsifgwJieS98UCrL2TIFkmkVCKsa:RVuYayXBikxBQUfItC8XrMI6mksA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\91055799c1ae7799aff91f16db253242.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:828

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a5f89f96b96e66b22ce5449b1668fd69

    SHA1

    6b332e72013edd8b1a6a77ec95a9c2d261154fc4

    SHA256

    33a79fd10c1492d600dcfd3a804332fccf73a5a95f2a54e015ccd5b79e85ad35

    SHA512

    4ae103ad0eead4b22cf0d6a5cd5bbfae90250fa599f415894de1e193d1c19a1f095dd185d183911ef3de6042a87f31e8392448d0731c6a408e0a26fe42839069

    Download Submit