Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0a75d68546...d2.pdf

windows7-x64

1

0a75d68546...d2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    169s
  • max time network
    186s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    30/12/2023, 01:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a75d68546740df72b846562046ff2d2.pdf

  • Size

    84KB

  • MD5

    0a75d68546740df72b846562046ff2d2

  • SHA1

    80c40c9a2066663fdb2e063d2b0148c3ddd3c748

  • SHA256

    b54f854d6af575318104848f356bb20f22362ff60fc0eab240e63910ec53fc53

  • SHA512

    7950a30a2f27f3fea55a7e0d8f0c6a219e20cd09afa51bfe0b823edf049a652b556607f52971383fd503b0d82c569924fd73fe5be21ca0b8b49b0482b5fe128d

  • SSDEEP

    1536:yoUd1EtzFEvBuiyoxNrLkXARIYhj+9az/wIpEMW9CUYbBnIPDMWspORIqC:fyEh6vBuSLPLhaMjwIpEJCjB+DnRs

Score
1/10

Malware Config

Signatures

  • Checks processor information in registry 2 TTPs 2 IoCs

    Processor information is often read in order to detect sandboxing environments.

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0a75d68546740df72b846562046ff2d2.pdf"
    1⤵
    • Checks processor information in registry
    • Suspicious use of SetWindowsHookEx
    PID:4104

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads