Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

00fc6bcf43...10.pdf

windows7-x64

1

00fc6bcf43...10.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 18:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    00fc6bcf431be14a1dea267c13727410.pdf

  • Size

    87KB

  • MD5

    00fc6bcf431be14a1dea267c13727410

  • SHA1

    6b52cf850af6ea8c78a111801217378dd8ae211c

  • SHA256

    852d952237c2992629f2772e89eb93eda431364d736feedf30974b848aba5543

  • SHA512

    0464da3531bac0740cf8b1038d407d96eae7e3d0d5e02fba97cf33891e9b5297012bc190e18513723b6c9e66525b37d507cb8e47af322c10ccb16cff929c3994

  • SSDEEP

    1536:bwDPRyKRyKndeH2Yv2OT9f7OQ4aLY0TNvLjtt2nCBfNs7tIHWbdQ9++YUBHNVhWZ:MPRrRyYdeH2Yv2OJ7O2LYmNvvkCBG7tx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\00fc6bcf431be14a1dea267c13727410.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2400

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b3e24c5c3ba1f0ced56740dcac9a0b5a

    SHA1

    3d85d30ee42a206dc3a321eca655054bf19dd247

    SHA256

    d4fbc65393174dd7aa5efae2755cee3e151d91619cfe8a2967f3fb4072e13c9a

    SHA512

    3f686c1d25e70dd92cd080ac64fd8973e384f1914a9ccc85175b2cc850c97727a77d6c742e5aa5e79f8974c4704163d10741307bb1d191ef331682d468f12f40

    Download Submit