Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 21:58

General

  • Target

    1dcc94588ad25ec6982f27df13b06a33.pdf

  • Size

    35KB

  • MD5

    1dcc94588ad25ec6982f27df13b06a33

  • SHA1

    68461ea153552acf05438ebad25f2b71908e44c8

  • SHA256

    a79cdf091ff8f55da38c69ff58b37f803681af26e6a60e000cee64cf491f26c8

  • SHA512

    2032bff147da67b565a5225a1580c0bd7159554d4d17106908c683ef0c7428c5af5a506253453904f13273d138e18dc536e5377efc7164564e828407b32f6cca

  • SSDEEP

    384:uL0Tz744Ud3cs/1t0tJQKkiOjss03iCBGMOrtLRmdbUEdWLfCUSsZGSv6M9wThx+:uwTP4qsNtKTOA7x0vr2ax798OOSYs69S

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1dcc94588ad25ec6982f27df13b06a33.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    751ca15cba82724e01c8e48b2ff2cf24

    SHA1

    d082aa01f3ea3b8f1b89f976c4372b81080df657

    SHA256

    1efb5d7fd17d95b533a0f2b6bfeecff879594a2e02e712083116da0817dc255d

    SHA512

    e66e1b46975e746688da5877abef222d60d3d254b14dc18383e9e934d442721ac08f02660c1ead66faf8d37b09052ff7184587a5712da509fcbd6cd48765406c