Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    205s
  • max time network
    147s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 12:45

General

  • Target

    8cab7ebf51fd413bdc6c6e3ccd8bf7bc.pdf

  • Size

    44KB

  • MD5

    8cab7ebf51fd413bdc6c6e3ccd8bf7bc

  • SHA1

    f2b6bdf006511fe1c7553e61c6b5db0a12905699

  • SHA256

    dcb105daf269f0f54eb1376d5605d8f69e6ccfb0abc04214c52ddb83dd4dd0fa

  • SHA512

    4d436812cec890c6d5d14b89e04512ab178c0cba186c0af5f3743c7fcef7cb88188899d3c96266fdd8f5f2c000796cdc4bccfffd294e52fe112b519b07faa89d

  • SSDEEP

    768:hd129noOigOiTSD6ROWv9IzqAwrWo3eIPzByUaAH7pQt:j4EgOiDROCAwrvn7wZAHVQt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8cab7ebf51fd413bdc6c6e3ccd8bf7bc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2576

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0c1acbf5d1a65b0558cc30612684799d

    SHA1

    970aff28ce3d0f830f06fd2419c37e5df02ca45b

    SHA256

    e43f75335784663d10133cc87726b4eb57b9bdfe85b8fb0299ffbec4f6508fc9

    SHA512

    13166703f46513a9d67f856293eea2fab603b607c8aadaae12106dc64b008f1b46b7384a63f7503876291284640a2d20dbe5bbec7e4d8d21a2a791be76f0bd56