Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 06:05

General

  • Target

    0a4a889fc4ef75427de885ce35ac79e9.pdf

  • Size

    88KB

  • MD5

    0a4a889fc4ef75427de885ce35ac79e9

  • SHA1

    5dcda733a22f4f6430e6f3fa121f30eb237e0db7

  • SHA256

    fa35030602b0fb19fc87e22aec39b0209cf024badb7c014547fc3c12e943808f

  • SHA512

    400d9d13902721ad908579273ca57850b480cd0d89438d9774a3173c54347875c03f27ed3213a39c385d52b21dc9a7f7c2a283a67bdd8ce8b699db2ce6507c9f

  • SSDEEP

    1536:A5UDjG+mKgtwWYul2X3QKj68COJawi/yEhyWwzkDk+05CWapOtQyVi/ljw:ugjG+mntvYUO3PnCOJW/yE049cftQyV3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0a4a889fc4ef75427de885ce35ac79e9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3048

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    66d30afa0ee4dfe36688b8b4f997a1e6

    SHA1

    886eab0d50054fd60fd95f9ab84ec7a6c6888a74

    SHA256

    1b13a29f90971621738edb5029d347fc0d7c7b33c4fa7980b60c7f129a30f378

    SHA512

    0614c08d0acc3150c82c1b9aa2c21785d346d237f251144efae6c9d5d82b96e4017e7ba77151ee8464d6bafc46b8382af90b8a16c243d4e6aae6e11bc329ab01