Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b8ae13dc5c...56.pdf

windows7-x64

1

b8ae13dc5c...56.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 14:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b8ae13dc5c012d47894a82aff23b7c56.pdf

  • Size

    34KB

  • MD5

    b8ae13dc5c012d47894a82aff23b7c56

  • SHA1

    a05a7ecd5bcf410c33e7230f16180388900bb50b

  • SHA256

    7fc0e9fc0024da321ee119064d5c946a0fe85b3b2f13eff5527623b5b07e2432

  • SHA512

    59dc590a42961e5e1c24dd580c7695c7f445b570aa432f3f2483825fddad72287519f959c4d3a2503cd3367a7a5738e3a0d6dc4b89b10c9cebf26ff586d86491

  • SSDEEP

    768:9jefYR6YOGJ+iDn5Wk4T8twE4UycCmL+g72L:Qf46mn5kT8fXy2+g7w

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b8ae13dc5c012d47894a82aff23b7c56.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    186da052d53d0e0ea7bab6f8cbe6acf1

    SHA1

    fea54a51bffcd758d84e09d4ec32b60fdbcda0fe

    SHA256

    bd137b647b5266c167dd0006f7701352114c810a090287ee28e7c96a88a31e0b

    SHA512

    d051dabbcb115670142f767bc0c5fce1514ca403202a1fea41799b28c13879df4b7095a8e7a3d2f793d5162bf2ba496032ed1b2bb82978d8d855ecebe4b73149

    Download Submit