Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b16350dee0...d8.pdf

windows7-x64

1

b16350dee0...d8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b16350dee0b200898a85a38d55d63dd8.pdf

  • Size

    42KB

  • MD5

    b16350dee0b200898a85a38d55d63dd8

  • SHA1

    8ac7aa540f02c068640227af71e48f6f1d522500

  • SHA256

    92987f5fe3543d6f21143c97aa670ad4dbe71ee01eb6923dcb4359477fa871d0

  • SHA512

    53bbad3f4a897451638af6107dc879d576069c69cbbe8402960be3ffccbbad6a467a4915d44083a5fce11311acd5af2022ddb5321cdab0c0a8f01eb3bb949f79

  • SSDEEP

    768:0riIsvFC3gh0gcOcVmZYOibdtLJBtQLIJEPB14hnesv2BFG+pPTO8sL5:highJjJS/1XQLZPB14hnesv2BFG+paJV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b16350dee0b200898a85a38d55d63dd8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6b9c453c24a494cde26cd3c155b1d544

    SHA1

    4ab0af6b442148b536928c44112f8aa04c3e922f

    SHA256

    e932594921516d790e41dcf1401aa6ca24bb9dad45301391e1319c508eca11e6

    SHA512

    45544553bc3762fda19c960516aa0ef459db8caf722cade564256e575a82346b441ea5bd6e6f653ff9668c39435c7556d22169af929290b75a2731eb55c09da5

    Download Submit