Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0dfec95d9e...be.pdf

windows7-x64

1

0dfec95d9e...be.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0dfec95d9e0af905367e6d8d3eab3dbe.pdf

  • Size

    83KB

  • MD5

    0dfec95d9e0af905367e6d8d3eab3dbe

  • SHA1

    1c1079702870d04c6b4bfa8236f1c7249a402793

  • SHA256

    78a0491365a0e94a4c2d7a98669c3929d31f7336364d5a889c66960f0f2cd2b7

  • SHA512

    a855e46b7465d855aae22b4ee3d0a2081c2519135fc58d2fa2bc3b46cb9f244234c1a8f364a10f211a98791c33831373d7e45254073e0bdff5aaefc58156203b

  • SSDEEP

    1536:f85RZ9zmeoT4Ak+xMDsi2GV8wvPJuN8NJOhWsgk/O52H12uaW0WUpO7D1s:AQRHxAb2nEPd/h5q2uaW37O

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0dfec95d9e0af905367e6d8d3eab3dbe.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    78074098e4db5af28019eed99714d8be

    SHA1

    f50d9b27ea2934052472f0beda1bfb97bdb7d741

    SHA256

    55d912449f5a17e75a872ea5f68e61e592838e719a47636a748c104e81026415

    SHA512

    b85dab00b7db0d59131c18a65e3c08f40c1d5147ee9d29f0586074aec3e1911b266ead9679c1cfdea483721d36c5de7ded5b3db223ee6aa1d668f591013cc917

    Download Submit