Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0de5ad6252...ea.pdf

windows7-x64

1

0de5ad6252...ea.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0de5ad62522170693dd04a6e100473ea.pdf

  • Size

    72KB

  • MD5

    0de5ad62522170693dd04a6e100473ea

  • SHA1

    b3d16db9adeb7b06c63630e504fc370c24de570e

  • SHA256

    f39de2adbaa6952727bc48ebe87c37f30dc5e78a02c7834fb27b00c0c44e22da

  • SHA512

    283e6443fb419ecb45ce42a0bb433287c0608ad5a3d9b537208c302f31f93c24c07684b19c73f2d3691a179e746796e4d9b61c2ea200d122e8670f2043ca5916

  • SSDEEP

    1536:0l5bhFTbMI5AlcUaa8eyRfPvcH3+W9ZSJnvWablHr5fqOWQpOCMA7:Y5dFTbMhc7beyRvcX+WIxbNJqBCv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0de5ad62522170693dd04a6e100473ea.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d44bfd3f01a10dd2ca933cde86543ed1

    SHA1

    f1179b7bf756b0e42294cb2e1d5f415234c34f31

    SHA256

    c9bff340c89b51677135824d43011258b6de171587bcdf2b96ca267e9c1abf34

    SHA512

    8ac8f3cd1cc8ac96ae3270891dcc29929e37f956c7e298d8807753c71f9a2ecff6937b9aa2649785cbd4ef8d917b529a4daab0e92f21058175e801278e45e9de

    Download Submit