Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

af8df883e4...ee.pdf

windows7-x64

1

af8df883e4...ee.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    af8df883e474d7673a6c7b0afa2713ee.pdf

  • Size

    73KB

  • MD5

    af8df883e474d7673a6c7b0afa2713ee

  • SHA1

    5375a28ccd24bfaba56ee8a7c09f7364463306b6

  • SHA256

    f6ab555f95184408911adf8dbe1d98c2f1e34b13937640e8ceec403fd5579870

  • SHA512

    5e5d425f69f4269efd0ab6896b7cf0e9af87a4a2a2b0d0d52f55fdbbc2d56e1dfc3a62b92ad02bd606f6ca70446da1a2b3b9d61c07630e4c8ac2b8bc96e52a11

  • SSDEEP

    1536:oR+V+4A9RVDctOePVqLfgxrvcFObRvPZOdixRIoOxZLOaGxpEHcU:yF4AD6tOePQYrUAfO7oMYHnEz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\af8df883e474d7673a6c7b0afa2713ee.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e35efd7a7e204a4ab29d30fb11c621b5

    SHA1

    d8a2536ee3d5e2f616d8c77e19c0aa89154a3cb1

    SHA256

    0c4c06064aba38ae2980397d69d698be94a09c74a323acbc78bcb2e7d513e34a

    SHA512

    38c0b634185f9918e210ebcb4e0b7b7e5aec61fab92fe7e67cca70a87e75b7729f597f0ee8ec0bf939312d8a86e04f7cefe677bcf3b8a419818bf996771bb76e

    Download Submit