Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

14829d68f8...8c.pdf

windows7-x64

1

14829d68f8...8c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    170s
  • max time network
    150s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 09:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14829d68f87501be3b89d2b2e00c418c.pdf

  • Size

    35KB

  • MD5

    14829d68f87501be3b89d2b2e00c418c

  • SHA1

    aacc830ba07a22988410488ca17d4ad761cc533c

  • SHA256

    c917f17a12387d61f961e06bbbe34e9e8aa38c23bf55f9e18067e2c8f1b1c1ab

  • SHA512

    4803ca6d1c5e7d67eb3aac63a9a08d6a9e91cd78002d0df993c265c9fc53d4c1cca33d32bb9c6ff5dd24191a07a05a8001450cec47732fe419c36cf5f5bceb66

  • SSDEEP

    768:D8mtrHKwUXKs3BHjfgKVmLnobf50LXsLp+vnvUjN/iQV71utz8:9ZKwwRjOnkfKDsLp+Uh/iQR1kz8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\14829d68f87501be3b89d2b2e00c418c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1716

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1f45c6b6349cd57aa8a1bdd3da3d0b88

    SHA1

    d87a4cbd6e6d2924d57dfab6fb82cc4055a8c495

    SHA256

    b3b5756726a150eca745b44d08435186f184afd5df94f7d42958cf23c4040312

    SHA512

    4be019f3a79075c8be042d549f59ac607c3b5bdf54eb6a27abb529d6b2d32b6edce4b1affb501b679e074a7425823c71a3605a5ad29e266f3161dc73f114792b

    Download Submit