Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

04e4aa99c4...f8.pdf

windows7-x64

1

04e4aa99c4...f8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 21:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04e4aa99c4b06b64238c3de5a105b2f8.pdf

  • Size

    86KB

  • MD5

    04e4aa99c4b06b64238c3de5a105b2f8

  • SHA1

    718cad9ae9472765306857d2ffd357a1dac2c46a

  • SHA256

    adc3d19329600efd25a2d538f96d59484a5da571b3ab9386589fac96fb05ba4b

  • SHA512

    62fcccea7f062c79ca2b59a57266bc1e7c7ed176d9f71d17dea9aba82edb0cac204b4d4636935fed45d920077271d64e61f34d2d12af5d3260cc7936489a93bd

  • SSDEEP

    1536:UlsPIUViGudUWAQrDj0KQrSqIHwvdb3lmUbdWHH7TT7lWapOtQAFLl:8sgU4jJiN2MGb7atQA7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\04e4aa99c4b06b64238c3de5a105b2f8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c1cbb1c24ac3d0fd396531e82123a1f5

    SHA1

    420ed07704864ce6a0b7886462e7038377773f1c

    SHA256

    be975695fb13e650f963bd431919a09814b8fb0f7087931059fa182086398704

    SHA512

    f1fd65e44cf36f5b4644ce5884022e5b9c18f0fbacffdd348341f8d2faa241b2958b4fef5f47a324baeb81c68d2474eb9457c6636a432fa19a360f0ed27a2366

    Download Submit