Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

54ee10b979...67.pdf

windows7-x64

1

54ee10b979...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 04:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    54ee10b979d851e8ce9ebfa8aa2b6367.pdf

  • Size

    89KB

  • MD5

    54ee10b979d851e8ce9ebfa8aa2b6367

  • SHA1

    bf96facc2ff72ed93ae1bfc1e520edce693c4c20

  • SHA256

    73702c2f70a74133ace79da6f1ce4cbb26b39f406e86ad3a299ea2c719c3f6e7

  • SHA512

    2b3244fcbdba25e2327bf3b6f4a83009fa008d58b492f3fc57ce64c3d1f40a260cf3c5e0327c3868886dfb547c2cb6d812e0746228825152e00357c8eb025e82

  • SSDEEP

    1536:dDwbcAV77/EDYBAtkFZETWUbIFgbr8zAzDCPWBSqkGAdUEzlrEAfWWUpO7lw1I:lwbc87/NAtha5Y8zkDUdUulYAfh7/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\54ee10b979d851e8ce9ebfa8aa2b6367.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    705a23c2a6c233379b5d05328e43ab9e

    SHA1

    3054dacff0a563db24865ff594445af1de54961e

    SHA256

    6e0a53e22edcf350643fb7400ded1335d81324fc3ea74d6f2725c067b7231adc

    SHA512

    ba5aab91213ad8a506e90555ba7b0c0558b8198f6ed5e4a406455441ac60f0667a92f50870cc1a5d9d28949c88dddcfed508bc151ae1f9565fa17c18cf692acc

    Download Submit