Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 21:30

General

  • Target

    1d09e910b3ada29114248de4c193612d.pdf

  • Size

    34KB

  • MD5

    1d09e910b3ada29114248de4c193612d

  • SHA1

    6b12c9b52a39614bdd654feff5390edd84d83d48

  • SHA256

    e12ff8c4b24f15fbe6c13a51b7a6aa9e46f0f41d8d8a6c4500b02ee5be4a3113

  • SHA512

    9e8a223292219253d063e5e9dda7519f1e45c7da79e405d0da03b55c7b9adc45961ee6673fc4c3dcca13d9d82311cfa154de8d1c08431faf38123fc168300dba

  • SSDEEP

    768:jYJRTjUS6Lj8vLisC1LPe2M3EBvcjpGbX9uIB2d44kISrj6/UAv25Ob:gUS6zGkvyGbXcIB2d44kq/COb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1d09e910b3ada29114248de4c193612d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1e13945f5ac952288969b0c4ee129516

    SHA1

    a5477d1b5a0ef1f731d52120eca751c3f3bbd68e

    SHA256

    0cfa2d36825c1e7d8d9c6fb4ecc840629b881f72de219e2a8802c27d473cf3ec

    SHA512

    d474ece0bf9bf444c9367adfe04203a735d48377c72c97a1b304445ae719af4cacf88a1b649090c3d69b942391bf78a2e034f1cb0a8435ac60d7ffb53c7eae34