Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    136s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:17

General

  • Target

    0cb56ffca723fff077a37667d2136870.pdf

  • Size

    43KB

  • MD5

    0cb56ffca723fff077a37667d2136870

  • SHA1

    e67427db8630bb8f277a3df5e3f41002e3b83003

  • SHA256

    83b5be79c42b3c792fdde211a3e56807aa527e6caf15ae8641951a67215502d5

  • SHA512

    55b6450318249a62f789a6352a53fb73cb371d3816b1c039746802c7dd1021d16b34b227918c97c11864d2358d60fd0eee7eb0ca155db76b54261d16d2c8fbba

  • SSDEEP

    768:9gGzpDFLj2HwfVwXqeoFEjPkSYdymc9dWvgN9DCCM5uAEI:+GF5r9OgSyymuWvgN9O75uAEI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0cb56ffca723fff077a37667d2136870.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d1493c3cdac48c5a5564b63ad37d5a2e

    SHA1

    e2f09adfedbc09ced7323631ddf2efe38645968d

    SHA256

    0d5cce82c01e5a8d656519b066e46a686a2f30a2c19b7546ba995a24368258a4

    SHA512

    f75f2add5090dd767ec51958298a73c399437ba109be8507807736bd5b1f4c0b62272f3a6122194a95d527a2ddf83a9e60e59a8306c09649c4dd4f0a92129efe