Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

17ae66fa5b...c1.pdf

windows7-x64

1

17ae66fa5b...c1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 11:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17ae66fa5b875bb0cdf27d6cc0ac6ac1.pdf

  • Size

    91KB

  • MD5

    17ae66fa5b875bb0cdf27d6cc0ac6ac1

  • SHA1

    f74e051c787251f40ec9f22885280f4d82b0a92e

  • SHA256

    78d71a6ff4320dbbbc0735af6c1724d2bab50fb2ad2db924a2bb988aa9d1f208

  • SHA512

    0be9e01112537e262188a575bb38ef30d56a8058b3056aaf5b1782c9ac54bcf48b21dbfc66d8b66e465da9c53e40e9d45a714eeb458470f2ecb124f01f59044f

  • SSDEEP

    1536:4Ch7D4oafVY0zHHSVyQL41QsRu0whigAcN9+e7BWqGWYpO2+WuWgDDPSz9a5vLSv:vh7DpaHHHHy4PkFxNZlWqN2E1DDPqaFM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\17ae66fa5b875bb0cdf27d6cc0ac6ac1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    283a2dda919260cd2764c03c8fbfa7e6

    SHA1

    33df3c970d7e92b686a91edde2e901c119832d18

    SHA256

    574611cce578759b8c17979119a8133a7cff5ce57f11944a040062e731e39e1e

    SHA512

    64aa5905e7460e4adf990748ca53475bcfea594c66c3ca58324984e0855a0bd5ddc4e4fd53f043e2e8e894758305cdb98b768ff55a419a889532b06c12f5a9e0

    Download Submit