Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 18:35

General

  • Target

    0c4e604cf27ef0643931179fdf244223.pdf

  • Size

    97KB

  • MD5

    0c4e604cf27ef0643931179fdf244223

  • SHA1

    aad99d7bbf43a665f10cdc7bf13950e3703d4ad3

  • SHA256

    597d890ea4c5adb2233365d66abb62892562986323a5e3fa363c96abd1e8dbd3

  • SHA512

    fd1ace05cff323620bf949553502ab9937420d31191559ccd52c84145e70e2b9e072aa254b13f83ec67989685409877af15b9bd62afd88232ac676383437e9db

  • SSDEEP

    1536:7huWkxP2wnn0HGnWb5Ke9jIvKgvK9voMvNqPnrLtAZWyN2JqNFWxApOG4hIso:spvn0HGWt9IZKRomNqziSJgC3G4hQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c4e604cf27ef0643931179fdf244223.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    79859afcb9c9ee788546bffdb3c025a0

    SHA1

    5cc654a8c848c11856f4768b465b5ec0c519a2f4

    SHA256

    2d9814b8246d9140e5ead75010e724519214dc68a3e26d5027b419b360e644a6

    SHA512

    c3308aec0b76f68c10d84cca3b4592770e20f00094ac3d0afcceca3f819ff2a82813eee5b5d922258ea650c527c09fd28cbe82f6133aa2fe8d075e03368c7085