Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

aeb95e6b80...a3.pdf

windows7-x64

1

aeb95e6b80...a3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aeb95e6b80ea294778033368de4937a3.pdf

  • Size

    47KB

  • MD5

    aeb95e6b80ea294778033368de4937a3

  • SHA1

    0cf5f6607bc6339e0b359ba7673bfc2333adb778

  • SHA256

    e94484c715c000528f1d2b187403317f159b703aea991c17255c80b3bc3d3b2f

  • SHA512

    6ace0865d47035787e26ddf7294d41c4844b5c5c34ce1c6b0b419c1a6e067a5b78bdc019e71ae2db2cf4e8467b5bf24e7ee39ea40fe029d86529cd87f4efc034

  • SSDEEP

    768:FoSG/CHZfijseStk4gyRg29yAMcoYRlDonhANUqwaqVrRc+nY7untr:aSGY1JGgyyRlchAJqXpYqr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aeb95e6b80ea294778033368de4937a3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4d1679d1559b5c797353ca2fd270c145

    SHA1

    403b9fd3f4c4e8cd74dd07726eb72e242bea52ec

    SHA256

    2bc1d84c87599e9f4c5d16a61879dac224ac5cfa566d8f51b57312a4dffbd8b3

    SHA512

    0e5ae3243119eaade2d390ac671a2589a3820b7399b96f56340318b6811daad0a0702527a7d85321fe49338a38abbff1f40e7b4283e0d070b97bdaa4b527ac96

    Download Submit