Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0da9c12d07...08.pdf

windows7-x64

1

0da9c12d07...08.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 03:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0da9c12d0757f5d9914c7e57ea4b8b08.pdf

  • Size

    79KB

  • MD5

    0da9c12d0757f5d9914c7e57ea4b8b08

  • SHA1

    9914b6c807e8f6e45a6f5365dcd77420ba21b3ab

  • SHA256

    a640a9e5f30afdf4168c4e24afddcfac779a22620d0a841a4d8ade562a2eb2dd

  • SHA512

    f3d41259a5a57d8f77e948abf0e19965297e3966324278fe01aa4468708b4f394ac120b20f71c79905c2d46d0d8bed7cbd41b7babeaba0a56602b5e614c4260a

  • SSDEEP

    1536:6N6Lj5NtK7KXQjuClsuNUYcxGEA6Arrf62tzLJBhJdrmAFcrTXW2cE/gQTQ4://5Nk7KXQjuKCx0EA6AH62tzLRKAWPRR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0da9c12d0757f5d9914c7e57ea4b8b08.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    208a65d270c3d2d128b0d998abbe4e4e

    SHA1

    1f97336b993f3359a8754d57054cd78a3422aa74

    SHA256

    a2a497ed6aa9f69a62dcd33a94b1970101b841fc12577d7d329f65fcac2918eb

    SHA512

    93bcc0a18e84d45cca6af47d6bd06239e2b61cc13bd48a0f2c183e6b8c57ae0cabedb36fa01f348e015a435d5f33895d91611281e25fa9060809f06217f5f8e4

    Download Submit