Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

08bd4fd896...0f.pdf

windows7-x64

1

08bd4fd896...0f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 17:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    08bd4fd8965191d00b8ca41f0f573a0f.pdf

  • Size

    94KB

  • MD5

    08bd4fd8965191d00b8ca41f0f573a0f

  • SHA1

    674088d21481f7219416666c1a91d304ae406809

  • SHA256

    cba8e191c614d6f70e4c81cd42cd4dd73a4758d7702b99450a053d57c0f3eeff

  • SHA512

    5338e1a8848f06351168e2d328e6a880104fa1f02425780f5f41a76480403e05ea2d5d54cd0c01c4b1db17051169f505572405b50b2d5a0c0f1490db9e7c1873

  • SSDEEP

    1536:b9Jcq746JC0dJ9+vQKZgdJ91jDf+kt2U9GaqFFnXzifDnj9WHZIbiBV+oU1WapOE:HZ4eC2wvQKad71j7+w2U9GaqjX2fDnAI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\08bd4fd8965191d00b8ca41f0f573a0f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d431d7043e0441a992dced457ba80a68

    SHA1

    dd1afd0ce3e8a741f404c0e664dc41af3f715b12

    SHA256

    1eefbe0ded8ab63beac3f5e44b24b52c36460bab431c64ea805bfaa5e4c1c08b

    SHA512

    d9fbc4ee6aa711e2317ec31e60f22fe1a9ff033b9f105c14f411470c60ea1b6fec9adce2ba1b844c4635b72a3edce6a247f564d28c457c0ae5129326c195d5c6

    Download Submit