Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0da9aaf573...76.pdf

windows7-x64

1

0da9aaf573...76.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0da9aaf5737467d88bd699a4af081c76.pdf

  • Size

    84KB

  • MD5

    0da9aaf5737467d88bd699a4af081c76

  • SHA1

    5d0519e48e7866621adc0924586826a57eb282b4

  • SHA256

    9e3eedbc53cf622a5a60d801d48904d1fa462c48e2be04d1f097ee5b41034d0f

  • SHA512

    6c2b7fae314601df9515c44e841df28170cafc719c64b00cd570199e17a2f68c12455caa6b4f07ad894e0fc5ad9a32177726f3c9bf2761a529ca86cda2c74cef

  • SSDEEP

    1536:uCu35OUUV13CLxdeRAKSyIP/p49UEQWyBuqVVWRfNipEWQWQpOCF0xm:llUUV136tyIK+LWyV2VW/Cz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0da9aaf5737467d88bd699a4af081c76.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d64d2668889e61303f9ff435adb9c73a

    SHA1

    35978e08df8e835db0d48c410f7fd791d1b4fdf8

    SHA256

    515eb659a9c46dfd0079a0cb24554641437bb767c6a58ec70eafeb6d6a9eee64

    SHA512

    68f1672bf0edb617e0f5cda8e1dd9e20540e01bcf6dba9a7420db41f992526f057ec98fc38b100e4dc4ac82eb0e34d18aacb034b45b339fd05371bd505cf5293

    Download Submit