Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

15e4f91247...c7.pdf

windows7-x64

1

15e4f91247...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 22:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    15e4f912473cdbfb48e75d5c4c388cc7.pdf

  • Size

    89KB

  • MD5

    15e4f912473cdbfb48e75d5c4c388cc7

  • SHA1

    5101e95dabcdf440ea2d5193d96d5fc5fbd84088

  • SHA256

    267034696c5486267c28eecceca90dd88d6309dc9361b29051ee564e09b5ffb8

  • SHA512

    84e9e6892cc07af4da81f55272b3637243c7855ea91dbbe8fd575393a58702b9128a2f72f302113d1b8ec5af199ddf26c6bed6a528fc1b976da57f509706ac1a

  • SSDEEP

    1536:gC54ZAwv0WIdDYDD05yfsoVMbwt2qUbugMZcrr1u/5h/WDQ+guXDdr14rEqHW8pV:oZAwsWNDnmbtqU74/zp8dr1eDa7O

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\15e4f912473cdbfb48e75d5c4c388cc7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    789cfcfb6d6c7973facde06634f09e80

    SHA1

    be0e7348e46f7b97297c929c2b9e68f8aeee2d34

    SHA256

    ba24b32e4daa6023548fdf663d2695a085cda407258a613e8481ec3a0128146b

    SHA512

    25840fdd28a976a56ccdac32a50e71817e0272e87da1ff2d35ba6af5e2e571fd5287b9d3f02f8b4bc2ac4eaeeb3b834cbf423fc2b7a78755a096260f2db51fc4

    Download Submit