Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a680aeef19...e6.pdf

windows7-x64

1

a680aeef19...e6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a680aeef19078b953b468cd4d50926e6.pdf

  • Size

    68KB

  • MD5

    a680aeef19078b953b468cd4d50926e6

  • SHA1

    e0120c4e97000945afd8fb18a313fce836e481db

  • SHA256

    a2f32914ef6dca8b61335b049410f9b7a02e2b7fcd82cc9b4de2aba049b08943

  • SHA512

    73a6ef1aba949ad43c2ea4f17a6d913f0235e63f88e953e8dee68a4b84a9db83a7e3aa88b0a21364e9fb579ed89ba491070ce170732be8cfc02800a31be641a1

  • SSDEEP

    1536:IcJzMFuQPIoXmTqza0BRC7w+q9QtZdd6kl8zi0Y84N:B+uFymTpKOZdd6kOzi0sN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a680aeef19078b953b468cd4d50926e6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b6625a6c49862532d889e98f864cd5d3

    SHA1

    12a1b045ec7bd3441e8dc76f5d0a00d2fb5c31a8

    SHA256

    cf8a1a5cec99402865de49a10e7d254721043d0767e038106816be1c913d8811

    SHA512

    bd6bab9050a6551273b2ddaece88b9f2ff5e88269e129603f3c332c4181bb9117051e4d45fe6bd501cd0c4e6fed24ef5aae59a5df4dafed9e23c44acd7f573bd

    Download Submit