Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 22:36

General

  • Target

    1ea994d44a0566b6ce4e82b41a88e86e.pdf

  • Size

    34KB

  • MD5

    1ea994d44a0566b6ce4e82b41a88e86e

  • SHA1

    d83e97c252e643a223ddbcad41c9fb9d56995207

  • SHA256

    2655238fcf5712c16668cddafacea5cab5327580c366b3e2a23cb662b3571c72

  • SHA512

    c0ebd2f8c24033bee24efc3e2dc7ea5d53ad51a54b0f23de90df78fba2f34b37cebd7a1f068ace7431ff6258b1b5ee6b3a400b72f8c9c759c482a6fa9682e50f

  • SSDEEP

    768:NEkJr5YGmhsubSf5GSun5cKh+O5jOvaX2U6G3QNknCSPeN:qkJSw5u5Dt0amPZgCyeN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ea994d44a0566b6ce4e82b41a88e86e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0d8d185f0afbcabbe3ba20071291cdd4

    SHA1

    0c1551c9639a652b9147eb0f5b433953b77e0cf7

    SHA256

    e66beaca19ec405b344b2c972462a2b5f1dac34968b0866df7d674b972fd82c7

    SHA512

    3ff6e387c8432435c8d7454623aa3b2da2d0366f91591b88961958137ae1ecebe56effcc8bdf1563ed80468c07ae7d73e2b34f3f435b2d956e5f1f85df607174