Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system -
submitted
22/12/2023, 14:33
Behavioral task
behavioral1
Sample
c5e3ee79537de8e2b4f7e383f93c9058.pdf
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
c5e3ee79537de8e2b4f7e383f93c9058.pdf
Resource
win10v2004-20231215-en
General
-
Target
c5e3ee79537de8e2b4f7e383f93c9058.pdf
-
Size
56KB
-
MD5
c5e3ee79537de8e2b4f7e383f93c9058
-
SHA1
3681d85123062dd3262523b7910f0cf239dd2fed
-
SHA256
0686e8657b6bb0dd76658feb017a3bd80124845a1a25a52d665616801c501c48
-
SHA512
5d7a70cd437d7cdddfd31e64f6becc25add480a016429a1be30039ec9b7d01f4056b48078d0545b062eb7267471fd5ad8362d3f9388b8d18fc28d84706700b84
-
SSDEEP
1536:qr3RsDcMMx4WBkuEUPoyuOuFYy/q1IJYdBY:qr3RshMxbBktUPodOuFYy/qyJ2S
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2852 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
pid Process 2852 AcroRd32.exe 2852 AcroRd32.exe 2852 AcroRd32.exe 2852 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5b27eba5ab08f5fa42463b989f6e7d3b6
SHA1dfcad8cdb9a8d432760cb8559ac150416f9f1b8f
SHA2569b74de8c4b8088e9cc2ef4b9641f7e1df91f78d3456ae42cdc1953d6db781643
SHA512d893ee8d11840989df4313a4173c23624a1741b0eac3f0b23a3cf3ce25a1b8d64744ea0bc7229e04ba283e285e6ba47c6ae9c6ef00cdeb05e82e2539e05a2ca4