Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

16c428dae6...92.pdf

windows7-x64

1

16c428dae6...92.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 11:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    16c428dae69cd31aae463dea0bf9fc92.pdf

  • Size

    76KB

  • MD5

    16c428dae69cd31aae463dea0bf9fc92

  • SHA1

    b8394805ab9a807906f24216223eafde93b1f548

  • SHA256

    8d644d8f4d412867348db8718e187fb779133cc2598fee178f4da384e22124d7

  • SHA512

    ac9c3db031ca0023162cafbdebdbfaa7bf9925d0aab9398c75b1b83c518d7a71a4f2d273ae9c09ebe7e688652d4de0d92e6479ef3c568ef7150967af11776877

  • SSDEEP

    1536:Jss5gwIChzSkTEHCkE9MWMrEmZ2hiDmebPOLTlZWg4DnYgnYP96tBI71:x5MChzSkECxMrEe2sSqLDnFnY+Ba

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\16c428dae69cd31aae463dea0bf9fc92.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca517d5bb76aece6f3656f1f07b91248

    SHA1

    ad1af62ffc020cbb8ff67d36be3c3faca7e02c6f

    SHA256

    d9b827e499685537ec337ec669f18586297af7eb6fa9559118d1cb3571c570fc

    SHA512

    641a08ba402f9119f1fff31704a03833f1535d8a377f30034b5ddc363f16e18eaabdb610d28c4d3a4f302e09966a08c91fea51a35a5db1ceb525bf5594b2e745

    Download Submit