Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

12350a2b04...5f.pdf

windows7-x64

1

12350a2b04...5f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/12/2023, 20:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    12350a2b0414b1fd84da571de66b995f.pdf

  • Size

    155KB

  • MD5

    12350a2b0414b1fd84da571de66b995f

  • SHA1

    ac63e9b864bdb9b6f455c7c8d1f1247dc06ef108

  • SHA256

    ab8b1213e6925de026e746719ba6038ea229cffeafa46bca7e46c37aa761872a

  • SHA512

    0e03d8acda9414a1c2abcd4fec76011f2808c532c84c869329db4bd711837f0db0fce0b51a5fcae7ddec8a9580387450608254c8389e8c351e9e0764b967e48d

  • SSDEEP

    3072:ZYpvviIuU5tVkp7j+XY8p4Q0X1C5YT5jtBg9Hm2q6nPo4g:ZYpZuU5DK75jMYT5jfqgF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\12350a2b0414b1fd84da571de66b995f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9af65df47d5a6256012e489fbe268e6d

    SHA1

    93088d40c41fb29651f3ee41acc19b650864e83f

    SHA256

    2a5d06d0da6bd3c1355f8c4e6c32b7545303b64601e7548fd49c27cdb99ce498

    SHA512

    4ae869c4c2af6922c8dd4119dd95549113a31614f547dac310cf329857db1162b730a601cf01ea1a393b6a3b6412e3388ea64c2e016ecd50341205fd676f43c4

    Download Submit