Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
30/12/2023, 11:38
Behavioral task
behavioral1
Sample
1753d418aebe6d3b30db64d432adc1f5.pdf
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1753d418aebe6d3b30db64d432adc1f5.pdf
Resource
win10v2004-20231215-en
General
-
Target
1753d418aebe6d3b30db64d432adc1f5.pdf
-
Size
74KB
-
MD5
1753d418aebe6d3b30db64d432adc1f5
-
SHA1
7e6044ec49a686e5067fc24eec1aaec208aed5b6
-
SHA256
1b0d4b022cd179ed3260f20b45fae75c0b1fd56eced2cc03ee2f6f0329bfdae4
-
SHA512
5b095d86b55313cdde45cf5e9ae7a0e59a245940d74bda679e9c58327471291b9829ae0d82d7e6c830a5c6a8158012a5e3d5df09c82c48db87cc9df3bf2ae88f
-
SSDEEP
1536:gmYuBV5m9B214SEnoWkN25zpppwA5sN6aUO/mfpht6wa3dh:No9B84SEnlp5sNSOOhHvaf
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 3020 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 3020 AcroRd32.exe 3020 AcroRd32.exe 3020 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5d62b85d214b01e0f6312ee8edc68cb1d
SHA1e11ad5e5fc874fb907fc3914f88a930ca8707e0f
SHA2563c93b6c984c49cdf6c223df040be623c6924cf6e7c8b681cbeb2ca3567364d2f
SHA5126d9a9c4e0ff0dd1d3dd0fcb8946d8fc6bd900aad4518a5a0b0d4a19f2004114d3278ab0c2e44cc6c02b183f07c58b22f79d8ae55daddb6c062ce25615e3ea798