Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

03daf063d7...79.pdf

windows7-x64

1

03daf063d7...79.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 20:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03daf063d7dff3d0a692555458f1db79.pdf

  • Size

    95KB

  • MD5

    03daf063d7dff3d0a692555458f1db79

  • SHA1

    1634a13a3dc1a7d73f83bd77fb9de0d350a43f86

  • SHA256

    9d8f99cc60e5dfc105cf2fd58ad0c471e09ca394eefd4db870970ca381f3187a

  • SHA512

    da77813ac1a5e5733aa7c5159bb128ce530bef3f811fac0abfba2988bbcb1cac31bec5d575443af274b86cca193948406098439e32bad62997488abbb887a610

  • SSDEEP

    1536:COusTVHcaO+wDbjIUWU/M93dkiY1jeyDyr9D2+aSBOKWz2xv+Kq22caLWQpOC9ZE:jusTVHfO+wXjIldkp/2r9D2+LBOJ4v+g

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\03daf063d7dff3d0a692555458f1db79.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    49348ae2fac48b029274e131d155bc62

    SHA1

    33ffbef6fde630e3c9509d4aec6a912994a5d261

    SHA256

    58602f6d102e27e22e649c25b4ba2e2af8848ddc79da9de15d1a0d379d5776e8

    SHA512

    3f1aa5af50673e510830351a1aa1f98409f9f04ee411575534e8b0173a255961b9fede0a1e69fb95b8b0e362c774e0f5fa909469ad51f6ac377678355809fbb1

    Download Submit