Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

f7e5f636bf...cd.pdf

windows7-x64

1

f7e5f636bf...cd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 16:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f7e5f636bfb267dce19448d5aeecbccd.pdf

  • Size

    66KB

  • MD5

    f7e5f636bfb267dce19448d5aeecbccd

  • SHA1

    34807b6bee20b31fb2f20e90c63653a2fa20eb32

  • SHA256

    edd0824f47063442955d49a5763f22f1a6b53b87bd0d3709e9fc498354b24a10

  • SHA512

    5270ef0b56f4669f767df08e5644266273d3e4087b8e0ef98cdf23ab30a8c1fbb550753098c6f9d9d19e1bf0ea09098842a23f998244079e16b86f501bf54262

  • SSDEEP

    1536:Fl45z+mURsWnIbh0811nf7yZk1cBqleUcVdG8v8S6jpHqOJEobWL:ezSsWnIbhn1BfFc3GxtJEobW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f7e5f636bfb267dce19448d5aeecbccd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2824

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d6e24066a6088f4d56cf0b415522078b

    SHA1

    ffe3c50bb2f02ee78cb11a8ea921b5c28dd98404

    SHA256

    8f1dc1bddf441363c8ccf84fa5dd3432c3a78505eaddf0220845f6fea374a3f2

    SHA512

    7696855a52702dcd9906c2ceb1b923eb286873b807265ce39855c37ef4a6a9fb1e842287773d4aa3034705c0f9d6bf85107dca3f3bb90d0a73bb873ad5664e61

    Download Submit