Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

021835bdb0...5a.pdf

windows7-x64

1

021835bdb0...5a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 14:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    021835bdb085e2491d9d9d9de51e8f5a.pdf

  • Size

    86KB

  • MD5

    021835bdb085e2491d9d9d9de51e8f5a

  • SHA1

    f701515950bcff8d1536119bb9cc370fc20d1f53

  • SHA256

    77544f30d2c94e37f916821c830564d3d986d98d4eba421bb135c15fdef0e0ae

  • SHA512

    cc6d2bc81bff86da6f561c83562a9ad8b88fdaaf7c534d75a18cf79ae2a81fbc9f1a29388bacb5e7dca18585d97d0f8e1be52798c167c40a38fb6d0f1123b60d

  • SSDEEP

    1536:RgAhbu0RSHVEedl0zXjTPiiqiGHovJgZ/Its3fdmNKpwzWQpOCoWMEYI72mDiSEL:iAhbGa0ibPVGIvJgEsjpweCEI72WZXDm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\021835bdb085e2491d9d9d9de51e8f5a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2344

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c310728d2842dde2c7a0d5b7482d16f6

    SHA1

    7520ac2771e89f77e2bd3b10127ef93914a8e727

    SHA256

    66828d51c1ea8e1a08f8f8c75800cceab3957f4ea601b514157f22ad78abc7ea

    SHA512

    4c8abcef43a0c3bc66073ddb030f6850e4e59ff98bffa62da8bbe5ec73509e15b414c0b56e69a1c0777a5f6f52aafcc7f3272075ef99e0c6a8f2a5018da4daae

    Download Submit