Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1227e9caa6...c7.pdf

windows7-x64

1

1227e9caa6...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1227e9caa6570759cf9220815058c7c7.pdf

  • Size

    93KB

  • MD5

    1227e9caa6570759cf9220815058c7c7

  • SHA1

    4c5f4a6d75eb88d0f5da368cfbf649714adccf0f

  • SHA256

    d7518d5e54f69ead523a6e39f6093e6965be941813f91991a2c9bb9857d8f6c4

  • SHA512

    ea99d2d1224795ed525c28681e47b762da7c8440d51e7d2baa8563c6e367ab41b55efb55559be43dde6a8899ba57af70bc19b39f23861b3e488fa737bc1907fa

  • SSDEEP

    1536:eGQWGL+gsZ/oBkz9/ZoZMDmZWZSeA+7I3QH/Z8/Vf3nWasxwzhc6YWxApOGc1ypa:A1G6kToZMDOWUeA+7YQH/GJ7sxkPx3Gy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1227e9caa6570759cf9220815058c7c7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1708

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2423c4c136f35eb5efbb9e5425f5d597

    SHA1

    13fed69e109fe1394ae188b6f3eb809d0beea43a

    SHA256

    b2fb0cb96b42871f9ca0d8933f63d0232f8cdcb509d94847a0b3adabc69974a9

    SHA512

    7151b258ec04e0c1ac70655a1340928bec3a3d3a2be8e627bed7577cbbdace9e1127ee4b284bffd50756d26ddc33b18d9ace0b0c6648c75a5ed8da7b389e04ec

    Download Submit