Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:28

General

  • Target

    0e7d63ceb60381e56f2afe15c805b43f.pdf

  • Size

    32KB

  • MD5

    0e7d63ceb60381e56f2afe15c805b43f

  • SHA1

    1c8d414de42c9ba11a2e07bd464bacd6a0ddafea

  • SHA256

    9db99ac2059c723718125149964d66670c4035375c640560163b0ef222518dd6

  • SHA512

    807db547d5e0dab95692650db2a0c88deda92f63d551c26c7b13f9c6e96d06cf60ed06c8300d97ba2b03883e163f5b2b1c1fcbea05b6c112b491fe32137f7548

  • SSDEEP

    768:fxO0flFKiJVw85BRdI1mC08ckRQARWmwhsvHFPg8GdYjFv:qiJVwL1mCwkFW9IPgBYjFv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0e7d63ceb60381e56f2afe15c805b43f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2a87ca876374d711949a6a47c31b5fa7

    SHA1

    6f06dde57b0e2a85e6f873f15dda545aa28fc14b

    SHA256

    43d2cc010f063a6bdb269981ef3f0f1ff12ada7ecedc45bf23e3499f7cf8ade2

    SHA512

    7ec8a475777a79a51434276d4c9e5a352a7be022246c2ec5e3ba6b0afc730e879876dbf71e9359188cd9981ba88754619c9d489e9e12579333f5426e4b2d003b