Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

9f200a839e...f9.pdf

windows7-x64

1

9f200a839e...f9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9f200a839e8ddc584ab3398c3927d9f9.pdf

  • Size

    43KB

  • MD5

    9f200a839e8ddc584ab3398c3927d9f9

  • SHA1

    469ffdeb0d090a94728b490792bced0e2a926a1d

  • SHA256

    d4d3e39ffcc497d9eb766646c8d11d97cb4391d9b58d11d9ff5ec39f8a4bb46b

  • SHA512

    c9551a7144e87e8ca29115503eb254054c729b647e0db6fc49292fe90170b770ef93e4fa84b7c8700860f2af0450cb9e754aa8b0f202497e45900ddd7a20a6ac

  • SSDEEP

    768:uxXDKaGcL0tDt4G1mLf14geIns2aoJ27Ah9yaknpMD0+1GksyhHtgNbX:uT0hFmCgJs2aX7naknpMgYGksgtObX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9f200a839e8ddc584ab3398c3927d9f9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eb5b804f479660567c209b1ece9e10a0

    SHA1

    7c91b8dc684ee16cad0e5c766d2488d417f3017e

    SHA256

    26290077db6d6521d8aad8113f1ca86d8d7a5b80155f7da969fbbc4631878295

    SHA512

    6312c412dda80fd8433c1353e71759ff8b91701f5673fa9cf20f11fbe4379f57424e68ff305840a985a00e80058e8d988c13e623edbc09d7d4227c87a39967c4

    Download Submit