Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1ec27b2a00...f2.pdf

windows7-x64

1

1ec27b2a00...f2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 22:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ec27b2a0040f768cbd80455615fcff2.pdf

  • Size

    91KB

  • MD5

    1ec27b2a0040f768cbd80455615fcff2

  • SHA1

    dfef96d4d17843058ee6334d028de4069ead55f5

  • SHA256

    21bf41785e93999cf1bc37a999b23fe243c3c92d31fd313633a55e1a62809a37

  • SHA512

    4225c2a03e0b11ac1e2033c616f405d0f8e1f00d95b5b9aa7dfc9b50806e979f69d50af3fb79bedea8a6d6b44d4ff750114e1b97b4b35fa817e6b7c8da83cc1a

  • SSDEEP

    1536:8pTxbKAeCPbvLnU2nzbZYyRDgopmIWYXuB6DRclG8JUDr5oFJg+92L+JP8qoQFHR:6VeCPbvLnU2n3ZYyRE6maS6d+MrfW2LU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ec27b2a0040f768cbd80455615fcff2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    db61a4094e3dc40f6c3d07ef1a91a10a

    SHA1

    3386ffd3a2244772b1814723714c91e399fda7e0

    SHA256

    d36c35c3fd469583f2374dee54378489c8a730907e303891cbd98984972c799e

    SHA512

    016c9f062e341dcf072aaa2c097e6415f44ae99e59e6229cc94b96bf076042e83deaf330a4e10bb757a032b5b1f30168868521df94fdfe21ce252248799cbe03

    Download Submit