Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
118s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
22/12/2023, 13:54
Behavioral task
behavioral1
Sample
b16350dee0b200898a85a38d55d63dd8.pdf
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
b16350dee0b200898a85a38d55d63dd8.pdf
Resource
win10v2004-20231215-en
General
-
Target
b16350dee0b200898a85a38d55d63dd8.pdf
-
Size
42KB
-
MD5
b16350dee0b200898a85a38d55d63dd8
-
SHA1
8ac7aa540f02c068640227af71e48f6f1d522500
-
SHA256
92987f5fe3543d6f21143c97aa670ad4dbe71ee01eb6923dcb4359477fa871d0
-
SHA512
53bbad3f4a897451638af6107dc879d576069c69cbbe8402960be3ffccbbad6a467a4915d44083a5fce11311acd5af2022ddb5321cdab0c0a8f01eb3bb949f79
-
SSDEEP
768:0riIsvFC3gh0gcOcVmZYOibdtLJBtQLIJEPB14hnesv2BFG+pPTO8sL5:highJjJS/1XQLZPB14hnesv2BFG+paJV
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 3020 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 3020 AcroRd32.exe 3020 AcroRd32.exe 3020 AcroRd32.exe 3020 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD56b9c453c24a494cde26cd3c155b1d544
SHA14ab0af6b442148b536928c44112f8aa04c3e922f
SHA256e932594921516d790e41dcf1401aa6ca24bb9dad45301391e1319c508eca11e6
SHA51245544553bc3762fda19c960516aa0ef459db8caf722cade564256e575a82346b441ea5bd6e6f653ff9668c39435c7556d22169af929290b75a2731eb55c09da5