Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

05a317a5e2...ef.pdf

windows7-x64

1

05a317a5e2...ef.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 16:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    05a317a5e2ea8080089a52e374c679ef.pdf

  • Size

    86KB

  • MD5

    05a317a5e2ea8080089a52e374c679ef

  • SHA1

    42f7386db648e415426c85f0268f5fd638581f1b

  • SHA256

    5b78aa2700ce43a9558c785ec0720411e3e84a78e8bfcd50cbc10dbadced8918

  • SHA512

    86c7b9b43461aac05ce4ebda17d5ec9ef8af39d1505fdaea1e214d51fdc5fc8b268351de0bfd2d8398a2f69fbc4a957264bf16d9d34c0592e3f30872451bb81c

  • SSDEEP

    1536:GbawR7OJdVLaMLadt+9MJM23ebX6B3n67br0f0CLdu597i4ted17GbXW6pOu26Wb:WMd99ma2P3nIrEzLQz7i+erosu23fiyz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\05a317a5e2ea8080089a52e374c679ef.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2352

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    750441080fb604322c5befac9ba77f89

    SHA1

    215ac743bc7ea51bd1c14a8e10ba3791651eacf4

    SHA256

    fd0deff65f7a1d4b62d0742151cda59bea809d0663ad995e538c63ef59fe9c0e

    SHA512

    d2cae42901b22098da11023e4bd712ffbccf1d4b35fe45653fd5b096cc7e956833ede22a6c58e26e4f262af2de010924b72be73be32906f610a0f884c68243f4

    Download Submit