Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 11:09

General

  • Target

    19b862e8298f3de3cac4adf2f2f636cb.pdf

  • Size

    83KB

  • MD5

    19b862e8298f3de3cac4adf2f2f636cb

  • SHA1

    fd08f2ce9761bf5c2475371bbc2e5591e7c497de

  • SHA256

    5c804a8d089127b4f8018d2c51468485d84ab6f7c1efa0599d4c7c5bff554966

  • SHA512

    2ad5b50901b341624c7353fd67aa7e58a6e9647fe4625c0c9a53ad7c0dedad9341471935aedf0eae864acb8f20174452e2d3438f2330dd429c6fe32732aeabf5

  • SSDEEP

    1536:mGFlV/jYvq++yW+6e1yHtmoQTsXj7rMfdvfDHfj9M:/FlBYifz+6nHtfbj7rMfdjHfju

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19b862e8298f3de3cac4adf2f2f636cb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    517ae7ac8f5dd8e8028c83922bb76f34

    SHA1

    4eababf4b0b8b8040fe3b11ffdf4f4b2ecf57602

    SHA256

    3e42aa2c345c33c8850c729f440285efca8fe125baa22df671646af9c9b06f23

    SHA512

    1c072991c379e778ee0a6530b02289b1e761d506956ba71c1874988772bd3158101784d21b4270e85830057e8ea9e0d22cae1b39e1c6e81b0a721bcc0215f7aa