Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

031db3e6e8...19.pdf

windows7-x64

1

031db3e6e8...19.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 20:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    031db3e6e8e3e0c2080491ee3057d519.pdf

  • Size

    104KB

  • MD5

    031db3e6e8e3e0c2080491ee3057d519

  • SHA1

    d554ab4e61d10cead49099fb099aee63799fd240

  • SHA256

    6b75e4416c4aa6708b33f36ef9ff38e8d8631999b41f2513c8242d17cb0a8910

  • SHA512

    c64a492fb7422b43f23e41f109b6129d7418e770d12ba16e395f4ffb20114a4c2ea1ac86a50c08334e491e549a31474d955ae4fa6b7ad332dd7d2ecdb606569f

  • SSDEEP

    1536:TlVMr6oQ0Du/4p7f6WPeCsFYlj/KA5g99jxySCtvOo1NjCH0cvWxB0I+35W8pO+g:qFDuAeTCrl5W9jxls23zw6IQ4+g

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\031db3e6e8e3e0c2080491ee3057d519.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    19a1046b47862098f315cf634e6c204f

    SHA1

    fdde2e1e92cf207c3e8d35e699e719ea4612ca2d

    SHA256

    fa010b9d7dc173292c5632e36458ff0005a1b47d49aaca098655260319d328c9

    SHA512

    67ada9590ec725be732838cb948467cf2fb3b0069c4c4b0ef656e740f0640e01c41238632834a2c079f862b8492ac1d8a95b164b98657183a634c121f7cce189

    Download Submit