Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0eb8579f35...51.pdf

windows7-x64

1

0eb8579f35...51.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0eb8579f3544a65dd88ae552d3ad3f51.pdf

  • Size

    45KB

  • MD5

    0eb8579f3544a65dd88ae552d3ad3f51

  • SHA1

    c80841c8b35db51184ff2721fef9f33fe842e393

  • SHA256

    7c48280290f91430e1db6bd16719477710e460685fea9bb0f06e0ddb728c1e78

  • SHA512

    1d1d483955341dd62549fa2ea31c54c61f289166a64c9546acadb49528768964d22dea326599e8e92b03debe778c5419834ecd81a76243667b3a86fa9d7062e4

  • SSDEEP

    768:vD1EDmDeS3pkoKVraIBbgfIqW6Fz4FxvipHUbnGNzOp:rWDGN3WRBbgfIqWE4/vipHUCNzOp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0eb8579f3544a65dd88ae552d3ad3f51.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    71c877e92a4d8f149244a11f22df6d22

    SHA1

    42e299765f2c37ea2faefae323ba76102640aea3

    SHA256

    3f613a1be90da18c2e6a2c9dc5670f51c7304bf9c52484d63048c67cd5aba868

    SHA512

    41aa83877dd8db057b826642a65037ee142533fa5dbe5389848b8476c1ddf3439aafe1e9f881656b6236b56e4f94bb3f6dc18f3317219be958256cfc9b5434d7

    Download Submit