Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

da2b945f37...51.pdf

windows7-x64

1

da2b945f37...51.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 15:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    da2b945f377cd9750070eecb4617b551.pdf

  • Size

    44KB

  • MD5

    da2b945f377cd9750070eecb4617b551

  • SHA1

    7de5cd31717840b793ececabc6df484f0a242066

  • SHA256

    e6a64f70903ee0b934f9f710e5faf0ba0e7948ca85155d2b75e6f98a4bb65d66

  • SHA512

    878dfce22b64dcda75b3caf4a305ad0598e5a8e30f5496e2d980dc0aa24e1c9807b9b2465dd7b0f7c5727b57fef87d5e9621d6f8001fe6ba12e2afac5c05891e

  • SSDEEP

    768:pF+LFqaQT9ZJkmw9nH++j0aYibBR8f2OfDsuRIIIIIIh4i2IGp7O6M0dbV:U4v6Hz0a51R8f2SDsaIIIIIIhYIGpKRM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\da2b945f377cd9750070eecb4617b551.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2116

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8fd7c380a3f7856c4572a772a41146fa

    SHA1

    a0763b5ce01712a0f52177911c41373b5b509895

    SHA256

    54d3c7cc68a8b1d7a955d2ed49e3dc0f99b6ae7ad476253909cabd6ac336d7a7

    SHA512

    9c13ac877359db15210f48c8310f3524e9facafe67892302095a48b3d0c4598e90ec5f73e718e1a67e1c4b70eba255e40e393b592ed023135921def97ffbd649

    Download Submit