Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 21:38

General

  • Target

    049eaee089f90d6e4c577544e15180e3.pdf

  • Size

    41KB

  • MD5

    049eaee089f90d6e4c577544e15180e3

  • SHA1

    5736724ddbf9af54bf9ca8cbaa6e0d2bf90e28c4

  • SHA256

    fdfb18026d407362ffa0069e60daa0686df1d881b6c9fe29fe347be91d4b0b03

  • SHA512

    594ad49d4a62db43521c34d83e8d3b7aca717709dbd34167b35b0fac5b1675c107494756670ce921dad1880226d8e0c6b4d4b85b958510d7a7ce4d7cb7b41a1f

  • SSDEEP

    768:VB6A/D8LdjZ63EKDvhC5H0ocYD1wGMfRW5SIjK8pCq0X2IRtG8T:R/D8LCUGiD12fRJ8pCq0X2ITBT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\049eaee089f90d6e4c577544e15180e3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d2c0ce8fa2866fc1c8ccff3ffe4a504b

    SHA1

    0065742e71ae0ed3e09c6b8ea4895d19aebdd70d

    SHA256

    5ca9d84c596c24aff12ff24cf0bdf5e7c97b146c78f87c056a93ee136b4fb9ea

    SHA512

    23fa8a679d77c69814a6824a0fea57cda040e3461b1c44eed7e351bb5d5b87db58375dce4cf23a8905aa5ef464496c5339218f0d94b383038525a292b02e7b72