Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 00:16

General

  • Target

    083ec97c9cfd140eaa4a7c338ed5b70c.pdf

  • Size

    78KB

  • MD5

    083ec97c9cfd140eaa4a7c338ed5b70c

  • SHA1

    dc8992c6263ecaf776709e354a2ad8c56ecb1fb3

  • SHA256

    b1f87a41e0491ab425530b7d0964ab554a4c7ba76a1e738b3df817de84154143

  • SHA512

    fc69de5b265f695bae2cb7af8c412ffed02652fe5f1914ef2617a674ab3403c89ade9eb61b8007cac859b06aeb38bad0e79b597aa36f5544e5b6ae61bbb75cad

  • SSDEEP

    1536:Xg5WHwj+VWHpFtsVfBoxfdRmglXFhGz6lkqu3KAWOY9FsWeEttk2XQQwz:Lwj+VWBmJox6gYW5QKRFsM7XQ3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\083ec97c9cfd140eaa4a7c338ed5b70c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2428

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2b5c7be9e6b2b9c70f89ad2e04a94db9

    SHA1

    9bbb78f09a22aec809a43b1f098df95e36b8bd93

    SHA256

    772dd5e43ac844ba4f2cb7acc939b306b72fea44f9d2292237e74f4064fb7fcc

    SHA512

    58e427b37ee2205a3f562eb45923175a27ff90c182999c12b8100f586400b046a39d15eff79f00ebc54bb4b9f2c7a12580780449693c830aa2b51eca7664fa0f