Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

168fb3e364...ce.pdf

windows7-x64

1

168fb3e364...ce.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 10:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    168fb3e364133196b5a064a61601d1ce.pdf

  • Size

    36KB

  • MD5

    168fb3e364133196b5a064a61601d1ce

  • SHA1

    e3ac18b19a897ce2bd1cfadcc37047691713ba0a

  • SHA256

    7a93e8d19ef36f53ae81a50ba7641ee4d249fff3baf7aad2bac55014aa9475e6

  • SHA512

    06bf9230d056304094bf132dcb35cbbce2d29d53a07e5f184e316dd19d6cb2db3c91bc3295fde2f5523215ad67c16790415be58425d9f6586eb2d02b2b505da7

  • SSDEEP

    768:5hDCQTIzPlfKqRo5c0BDdSdjiPGb0Yt85rXvXalxfxygt+QWzGSBppwx4pl:DOQA83c0uUPi0/Ojt6yYjpl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\168fb3e364133196b5a064a61601d1ce.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d6c9458f2136b85f95096ffec002acfa

    SHA1

    2b892792f8d24130b155beb74d7b5de7f09ef51b

    SHA256

    11757bc79553cccc0ed0c56667aa035a590e42bd66b2507ab7b82fd5ce26fe3c

    SHA512

    cb56ce1f304523df88b1d84061ad58b3a901af1b7f39bbad7eb4e326a5e77ff75901706d16679aecff431d27e090da0210bf95764a6bc494c2dd1bbafeb04dd2

    Download Submit