Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d00fd8e04a...a0.pdf

windows7-x64

1

d00fd8e04a...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 14:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d00fd8e04ad85c0c5a406184a72484a0.pdf

  • Size

    41KB

  • MD5

    d00fd8e04ad85c0c5a406184a72484a0

  • SHA1

    d353c78bf7305c905fca20e76ac658e3485e8693

  • SHA256

    069b5b3a22a670d161cb81d42f61e6643dfdcd5f76d8bcbf213babd982a57db9

  • SHA512

    4de5525d77728331bea2586aaa235254e5bf91157c49258bf598be2e33f9c3be027975ae22b11b74d621c0b04e2190794aae81c85262b447d32a7b5d3186fde3

  • SSDEEP

    768:cBH0DM49BsOsy22GqdQLDaKTQw7vUgGlz51p4PuzQ/pjvF/iq6I:2UD3oOsp2GUfP46uNF/iq6I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d00fd8e04ad85c0c5a406184a72484a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bec586fff22b43e962916f840191c7b6

    SHA1

    f41729f0260d477eb26b902f31cbb98ed3aa59a3

    SHA256

    ad6298c6eddd79618d587aedde3d5758a15eb328a28b99533f7357806adab621

    SHA512

    f9c716e48af8f2d93d93d7b5dfcc68881d63fe93c429c2af9de629493c4c424533ef355c0527f162c3b8870ec48216fd1d009d4998ae14808a61a44083258c72

    Download Submit