Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:09

General

  • Target

    0c8dd344033445f5b7a54a1fe86a764a.pdf

  • Size

    87KB

  • MD5

    0c8dd344033445f5b7a54a1fe86a764a

  • SHA1

    b35accfa8d7939216d0353817a576541038157f6

  • SHA256

    1c00d0ba41f7cbcbf2b65b5fe7f918782419fa49f2d50102c121fb67f91cb75a

  • SHA512

    a7d3f03f8c910d103cac7c6497c3075dd6562a21ac5c6734906e3825e5101b30e4db340bf43c00c77e4a611505de893da0fd4d30fae598c933b47bab46bfcd76

  • SSDEEP

    1536:jc4MQ/1fFUmUs37bpnuHf5s8NYrC2AEnXOxtAyfn1MziWkNpOPaWGf5h2iQd20XU:9NfGjm9u/e1HAs+bAytMzHP6h2iSd/lK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c8dd344033445f5b7a54a1fe86a764a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    929f32b7ce79162cb2fb03cb54d55ad6

    SHA1

    88a8b5d3fb67e40c307bafddb4fbca1f405be4e6

    SHA256

    9b710af3002d3ceb4ac6aec6fea85b256a35181f876a398f5e48725b7d26f027

    SHA512

    cb133aecbe8b82f4146c0bc9e5640f8a5ccb2ed4b70f96ce93835d095364d083dad9ae7a30fe6d59fd3245d348a5df44f384240a8f0156e03628dd710ac7e30d