Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 17:05

General

  • Target

    fb299bdfdb7ac65fdfcb75463ce54d36.pdf

  • Size

    32KB

  • MD5

    fb299bdfdb7ac65fdfcb75463ce54d36

  • SHA1

    3bea434456689512a464aacb4c49c9c9c6a33f12

  • SHA256

    e8a91a7ec19cd80645a8ed5cfc3d9a3a338cab9c093ada34d09acdf89d58c9a7

  • SHA512

    335c0438cd395355f6e0e1bdce00f409e9371bf7a0dbafd9533b390494babf3633608fa03bfd3cbaabfba93180a7b8584c1e39b90b17970d88f7bb1bca31ae18

  • SSDEEP

    384:l4A1HN6lAWDCtoCgX2Y5u1gnDd/6BtVHtSraO4GxUSC1dlxvUicCUS3QvEtNd89u:uxlvDCtoPv5ZDdSL5SLBEtNdZ99v47vq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fb299bdfdb7ac65fdfcb75463ce54d36.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    bdcc4e9de416df3f786f4109af4e342a

    SHA1

    bf4e940dab210a36d3c15e1370c160f9f6ed92b6

    SHA256

    8332224ab47cca05a35581899ea8fa68929171c5674428f1fb9f266f031a3539

    SHA512

    ca53f97cd13810760331c528cbb95b26bf3a7cb62a3d23d2cead9d585b7ea69b3f34f15921a548f0b64ca642b5a378df7f93e92c465bb81febe61fe84e0e9c4b