Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0f3458cc15...62.pdf

windows7-x64

1

0f3458cc15...62.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 04:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f3458cc15d22ce159c1cfcd5f770262.pdf

  • Size

    90KB

  • MD5

    0f3458cc15d22ce159c1cfcd5f770262

  • SHA1

    0a550e1a6183b6a4b2c621c5f1b95f5a1fccecc7

  • SHA256

    62c2e8007acd07b8a3abc14cadfb0b1c2a32ec679ed72efe2974882803fa3abf

  • SHA512

    507e6a6d56a4dd38796d4dadba193051fa04844076de701fe2cb2f2441cca255ce224a25709b9b5b445f9b8ae4d158c850cabc4b438e8575e24eda4dd97ae172

  • SSDEEP

    1536:xjt2jUs1u0X4vGyonGVqPFlawklfoS6HvWGpOK1DQwxqGQGaW74uYmCdMo:gUs1u0XEonRPzawkRohwK1UwxqzGVumm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0f3458cc15d22ce159c1cfcd5f770262.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5e0cbf3555e613f90e3cff4d2c118a6d

    SHA1

    8d90b589a582c9ff35771793a20c90f30f320d2a

    SHA256

    75e0bf4131042cd6ca860c2017e4470768902caca9c8611ff3fc3c5e88c7ea73

    SHA512

    85d81fbe48f65a466fcaa1d34152b8e98d00a6df85a7c51570109ca2f702631e6c626fa800dd9e95c67c8c62cc1343d7c9c1ba69241068c7f7ebc6b0a0571ef3

    Download Submit