Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1f52f6ed53...a6.pdf

windows7-x64

1

1f52f6ed53...a6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 01:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f52f6ed5319b5e55057a6508a1fe9a6.pdf

  • Size

    90KB

  • MD5

    1f52f6ed5319b5e55057a6508a1fe9a6

  • SHA1

    ee2f7793be6bc1420bb8a20edfd65bccbffed3bb

  • SHA256

    9e00ac96bc8a469ebf0ee703650a4162a6be7e102df9e9ffe365465a9c396c5a

  • SHA512

    4d09fa4c4b194288855b0664cbd714ee170bcb2f4bfbb358b5a909dd81779152759ca4a903626bb6bdfb3c019407e5423b2c48f3cea94cf7c2051f8ea75d7472

  • SSDEEP

    1536:Cn1D/HY8PhYyQ4mHoVTsC2XCD9oNYu7PfM2yTSmCScCl9twWkNpOPaWIqNofMIku:41bHXPuyZEoNN8o98Yu7nMcmbcCl97Pm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f52f6ed5319b5e55057a6508a1fe9a6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2388

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cec44233288ac82fd8d2575956aef2ff

    SHA1

    73582c8d7fa53c5697cff6723ae7d98ddeebc7fd

    SHA256

    ca3c3ae154d91dda8d4fe10b370dd4ace1ba7f6a9f15655f410e122045bd509a

    SHA512

    45d0b913744e317e045e6404c23015d919344c154798b9d4cdc4d792503002655ddf65d11aaf8e4f4db9b9501c90543fbd2427d2b7eabf3b2634426ce705f7b2

    Download Submit