Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

fc323e2a43...16.pdf

windows7-x64

1

fc323e2a43...16.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/12/2023, 22:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fc323e2a43bb397836ce1fc22a735016.pdf

  • Size

    14KB

  • MD5

    fc323e2a43bb397836ce1fc22a735016

  • SHA1

    02dbcdaeba8daad02d166fd9102bcdd39ff11747

  • SHA256

    f084591638e472dc244465ee41a298c3be0a3e7e6b98ca83c184b938561ef5e2

  • SHA512

    eb219bc9ec2a3654a318c20909ec1562a914381941f4b20b73d6f70b2f6c01b25f782ef59c51f8967bf9bf3eda9910e73ea5c5cd2b19e9d42648ab31ad3820e9

  • SSDEEP

    384:5sFlS3K6XgKV7cAgdOpW+0/7Pf3DzYLTXuq8yj+2:tgGzpDAPf3P0Xdo2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fc323e2a43bb397836ce1fc22a735016.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    73d9fca9a5502065cbb957daedf7ce05

    SHA1

    b0d5c3e64609f7ce5085a4837f4f99fb499d307b

    SHA256

    c81430f768bfb0458b2d9cd29cf6841a41bfd2827077a94e16b307b94792c456

    SHA512

    3bab4ec6e84278ba376106161fdde24c0d39eb431707a80969eaf0f991fd6f77826194c3676042fdf1eaef5e6b5c2c341705e6c4c7e0f5d01ba1a1107bc0bcbe

    Download Submit