Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c00566ad82...49.pdf

windows7-x64

1

c00566ad82...49.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 14:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c00566ad8247ba1c0f8b467811bd8549.pdf

  • Size

    33KB

  • MD5

    c00566ad8247ba1c0f8b467811bd8549

  • SHA1

    e50e2629eff36fefcbe17030a9006823019b95df

  • SHA256

    1eeedda73aeda5d79d57115634ea1dcd8cf6c6d3455eb6c00680a8b2c9da5558

  • SHA512

    89dde424ed4bc68e6b1d9ff2b1ec5904edebb547b164420b7113ceaaa34b066edf1a7f3e3610e4786c316999f77f6a5ae7009b542a5f83183aaaa2b6dbb74355

  • SSDEEP

    768:odbnrDjdmEPgCy6snIARuuDn7J3CYxo/T+xfwYUa/vpmi:oZnnnDARuiNCf+xfwYUa/vpmi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c00566ad8247ba1c0f8b467811bd8549.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    10f655347cd44974762d2c7a75a520eb

    SHA1

    3ed4771abd8bcd634967cdd06cb663a7ecd1b645

    SHA256

    2dc6a47131fce8828324ca8dd83b49fc5d9f1a764b62002ad0afb525368cb47d

    SHA512

    f8dfad28077d5bea3fbf7c3838d2fb99a7beda2e5c28ddc3ecbc3d9e5f9085e7c0b4350af4aed16963ff7c59505a3e1ab88d0c72c4741f7c1dc5af75c035a1ac

    Download Submit