Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

3fe1dd1485...2a.pdf

windows7-x64

1

3fe1dd1485...2a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    26s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 22:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3fe1dd1485131fa84ab7efc43b459d2a.pdf

  • Size

    84KB

  • MD5

    3fe1dd1485131fa84ab7efc43b459d2a

  • SHA1

    44200fde5531103e3a8c0b7ecc7f6ea11842f20b

  • SHA256

    65be643eb9dad36c9a0bf6df391071726f326e978d9b0ef5f28c2963576794c6

  • SHA512

    5f147d65fbf7731cf50779edd47bb1c08395435f25ad7f29b34543b47c1f17bda70dead7698af9a273a149489b0931d9660b3be855d14d588b28e225f5b8ecdf

  • SSDEEP

    1536:hGxxNxsgTBzGp/fy/mErye6KwnZM6SMuHL4bkBSb5Zde3N9WeCem3uMXbM:INug1z8YmE+e6HnZM6JuETb5Zq6N3DbM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3fe1dd1485131fa84ab7efc43b459d2a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b63680b01afa3028ba6115d6f71d2cc1

    SHA1

    3b70b117d575d8ca742846253268ac2bba12cfe6

    SHA256

    7079e06aba74c645e5a19673a2ebc50005829e9775939037fa3ebcf77f6c3d43

    SHA512

    b4ea9206397a0154fb736acae4529543360957eaf3ee514181b9b84487d00b4a45c60e816689230afe1a062db5131e2709b485c11aeed1457b209307f9ef6e1d

    Download Submit