Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:57

General

  • Target

    b303b9b1e7fd58158638ebf7661e9867.pdf

  • Size

    47KB

  • MD5

    b303b9b1e7fd58158638ebf7661e9867

  • SHA1

    c734d4c7833b7207547018ba64d0b71a0789302c

  • SHA256

    08853cb24e8f4603ef75878244991c003236e1922a39ee1487e1065d6e20e11e

  • SHA512

    fb8bf6a5c860b8c4a3f788f45bc10319cbb413c924da5b4c64e82d55d4552e55526702de95ad2a0056daf12b22eea4278b71c610cc0897119655b175d9137549

  • SSDEEP

    768:2Szg72LGJEKuJpn6iARGwXh6wUyv1TIt773TtPvGSDumjwlJkCTOz:SojD9wXELytUt7LT5x8TOz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b303b9b1e7fd58158638ebf7661e9867.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e4d9fcdfbbc737f17a24d12fc2648a28

    SHA1

    0808eadea6f8ea6631cae04b23eefc94839b0b20

    SHA256

    83b0ae95628e78807d52518781c2055c0a3b59ed72b310648cea53b93607f6df

    SHA512

    d34d9f4e578f06a1bf33842174a2800b71136d45f4a8d26bf13bc32f3b8c09470282c6b136ddd0e6673493c834297fa3c9b19d1a1d32833c4ef2fde517d46915