Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 10:06

General

  • Target

    16053bcd76541031a88a0f84c6494516.pdf

  • Size

    95KB

  • MD5

    16053bcd76541031a88a0f84c6494516

  • SHA1

    f6232f532575acf380364339b27ecaf8a3b62fde

  • SHA256

    e9ab3db53ce864619341b605a383ec186cfae16c5b1e13f1f2368b45dd881ee2

  • SHA512

    029340c0bbb6804d85ab2851ee1d0fa2c179fd8657d3250aa31c607cdf2548e280a9f6bfd7fc89d1675411a7172878e10b6e15b8b3df3900e8d04bdc756b6755

  • SSDEEP

    1536:BX98ZZVzwEY+3EcNU6dOy2IVOurHOXJyVgcjiPIW0/gb2oynWwpOSADNV:Z9GZ9A1yGurHO/CiPJC36SA7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\16053bcd76541031a88a0f84c6494516.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1272

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    77187c96000a6db077e09895507d90b9

    SHA1

    152a77713d870d37d25ed779af7be507dc3ba308

    SHA256

    bb71e70ff0b23c50c248087b393883db0bcddd26dfb9cce23d0959103ebab581

    SHA512

    a387b90d4c60dc33f58fe8892634cda8c9b9c12e244948f6b025ea0b1a1f2fcd8a8c11bc88a38945c1176b007380e7f14d955be4de705b0dd1ddf2c275cda23c