Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

19158e25b8...fa.pdf

windows7-x64

1

19158e25b8...fa.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 23:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19158e25b8e578d651e434f1b6ed93fa.pdf

  • Size

    87KB

  • MD5

    19158e25b8e578d651e434f1b6ed93fa

  • SHA1

    8a6b820c33b1a5a25714c3a70af056e0b91cda85

  • SHA256

    656a97ffba52b968d836a171bdce9c30504e404781fa2c2326570ada3d7e8e65

  • SHA512

    b9b02805d19293d8c8709c3324826869b39fea3a5ff0de681bb8d868f3c4d357a0135abcefc766fce1a04692b9359075f886f717d078b666256b42d1899f650f

  • SSDEEP

    1536:H5u7vRqz6TQ8ZnyOB7rQ4Ug1NcKl9qrIW2Jr+uBo7AG9LWQpOCrWX:Zwpqz6T5yA7rh5NcKl9qrGJKEC92Ce

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19158e25b8e578d651e434f1b6ed93fa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0794d867bd37cd11ca6de32297bf5777

    SHA1

    8a20b4ea509bc617b89af2906d00f20cb3241a97

    SHA256

    9d9c5239d56008f919b94d8406213bd3b51c8306e2f675afa4a316977e73ecb4

    SHA512

    8eafd8694b2971f94d3c5ef92f8700cbb137a8e6d8a3b0b8cfd0e44083f8bac316d0d3781b2f6a54865f68b0df1c9e6f23836ce229f489cede379f611127f549

    Download Submit