Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 14:21

General

  • Target

    be9e4055da7481ad9f0f57f27d11a060.pdf

  • Size

    33KB

  • MD5

    be9e4055da7481ad9f0f57f27d11a060

  • SHA1

    a5e75826095a178b2c1cd1dcff81aa246ccd920e

  • SHA256

    8dd64913efc668b6977f5c9becb2820f3f5543cc6bcf7c918787966ecdc2a6ba

  • SHA512

    6c7a67c56228fb587e3eb01562cdbd153148f4b99f6f56970459dc20d3d6a48b0d1295e48d7244a3762fc77227517651882e321687cdf6eba1459cdce0a0301b

  • SSDEEP

    768:qbag2fUZtTKs4jE8esF2MXYu4dh5Y1echNKmoNTx2:2agsUZVIjE/MXl4dbY1esoNTx2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\be9e4055da7481ad9f0f57f27d11a060.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    36f5460d53a77e08b2af695842773f6a

    SHA1

    af2a82e1bf10b4c15d2c5ed8b0c73144834b54b6

    SHA256

    ea240ee2af4c5a8c576c2317b03f70b36044d74fbf572388b138bb669f38d5de

    SHA512

    7b92f8c9deb3b344e13e9352446c64d2f770dd2535d8eca4467dd1c38df4cb651975ffffe127c5e88d381987d8c57a3c2149bd3ba796a55418e9f06b2847f8fe