Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:12

General

  • Target

    11d9e8b2faac31dd83f860b6a7432f68.pdf

  • Size

    274KB

  • MD5

    11d9e8b2faac31dd83f860b6a7432f68

  • SHA1

    8754aea385f22d4f82a989fbffad13349fb543af

  • SHA256

    d1f46880389eb0b3819d5d5c1a4caf25a7342866151032eefecafe7892f7a97d

  • SHA512

    31f2fe16e9182086ffab958d67c0122a6950e020e11be872f068ccb272cebda76a031452e10e353e36b0a26296c4e2e25d8ed07feec5f5a0d4bf0073ad7e2281

  • SSDEEP

    6144:Vb2bOghHau/QcSXTsgEdtoaS75GXORPOuKSs3BUx3+76nZBpZ7:RcBH/QcqTstdt47lRmasxSBj7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\11d9e8b2faac31dd83f860b6a7432f68.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f35a615589b875e6ef4bf1480baa2586

    SHA1

    79835e8a695a9948b320f610ce67574ef20ad390

    SHA256

    9ff988c347166183916ecb9a07181a0c097f52ddccdf3a62aacb9cf4867550a8

    SHA512

    29112a0f6197df4ce8d3f96f32306e94c274efebb46bcceae61ec36c80add2777aee1537aba56b47f9cc5cb88a6fee2ed0c0e5f83e47c6db5d6281ca7e2447be