Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4b5036db06...09.pdf

windows7-x64

1

4b5036db06...09.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 02:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4b5036db066775150558a0d98bdccc09.pdf

  • Size

    83KB

  • MD5

    4b5036db066775150558a0d98bdccc09

  • SHA1

    6dcb0eb82a736022d699cbee5817b4374b3831f0

  • SHA256

    97db5e4998bfc15ce6fc80dc3b60e0004bc43d6005e8143882dca740b60d7a7e

  • SHA512

    7c7c37b6d9fe9064480d7eb40b2aecd142fc1bdc66b14eaf6f6144f708739f46d9e0a8c9fd1e67c7aa2848abcf19422b1c91c93e499c5367e7f115ad7cba5e43

  • SSDEEP

    1536:MSSrWvcmIyMb4E4EMHrrfdvrF5lIenCAjZt/1EiOWbGDdTfpxRsNo/ObVAW6pOun:ZSrWvcmKb4WMHXfdvrF56enCAjNxGBfR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4b5036db066775150558a0d98bdccc09.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1c1b652412b2cd352a8beeea8425154a

    SHA1

    95808c676a8342f3ec11ed4fb33a16b69a22189e

    SHA256

    b0409d4ed5aa9d4dbdff4d877cc150c3a86bbcc405d9bf44479c35ea9d02141e

    SHA512

    0f6f1df3d669441b8005039de45e73f6ab5fa0245b668e383de17e015cde06112865cd1211b9dcf23c690a9f2eeb7b0b04dae042549f45842240ac1b3dc65e34

    Download Submit