Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

04285f5ae9...8c.pdf

windows7-x64

1

04285f5ae9...8c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 21:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04285f5ae9787e536a11c3cf6113968c.pdf

  • Size

    81KB

  • MD5

    04285f5ae9787e536a11c3cf6113968c

  • SHA1

    c24ff55edd180a2468a7a725b88b051efad24987

  • SHA256

    9fc397b3cd3b112c3ca227678c474cce04864e026e2792df111e537ad2c0c96b

  • SHA512

    22c01b3064c6726788b0d7794c9ddcda8d9903bd7cd4e1708c4c852db7707fc9467b1d7176313ed31d06adbe044550591e8431fe3c8c440baed68a6b1df09a87

  • SSDEEP

    1536:8JU6C7lQK0VgKinoHTG1IB8xCj3mvw5v002gT/jCVJhKNg0ePlHkroygjN:uZKdqgoToO3qwZ2guVEg5Hk8yk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\04285f5ae9787e536a11c3cf6113968c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d576ce7132281e534eca49344cbcab77

    SHA1

    894c5bbb926c0b610932e254343fd8a2373d582f

    SHA256

    bef101fa9ecbab45c554812c27b8278a2150e5b542626d3a8fd34e6c719df30e

    SHA512

    9e80855c60fa3164d9edef3bf8d36f17698597d087a0b9ffcae4b024822302b1b68e83ad01c09d1eb83e94ebccfb5612247aa2c867416e210f1b89b9c93e9697

    Download Submit