Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

1923603018...c2.pdf

windows7-x64

1

1923603018...c2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 12:53 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19236030182218577f9ef67df0e686c2.pdf

  • Size

    66KB

  • MD5

    19236030182218577f9ef67df0e686c2

  • SHA1

    17941b04782d488a92739046848bd5026a0801b7

  • SHA256

    c025a7fe9f96bee626278150172d13c77c2499e786a4df6a3cef01fa3692b56a

  • SHA512

    b795dbf29f49e9428fda0bb49cd7433ceb39adcc87fe5e1a5f62a9cade91599ae8c35d19b12b39a9ae4f7a5d0f2dd3d8595c60eec102abde221bfe79cff72a75

  • SSDEEP

    1536:Z9e+7Fb5kgKH53MY3cNXmoFXJsLMc2Cqidc0pLef2cWi:CkJ5k2FXbJEaM20NQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19236030182218577f9ef67df0e686c2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    98d3bb3b9b329ea7e09b4d18866916bb

    SHA1

    8bfbb40292caa42ba849f18c0b5f180d2898612f

    SHA256

    9b74c8167b8f68046bdd988bfcce2a3b44aa5c5c479dc269b8351c529409763e

    SHA512

    4889cf294d2452d4b56aad1cecca86ee1fabb321a96dda9b7fdd235d4be44037be7d3634aef39b0d166ad444ef1f60f42e022659662f0d4fa75b4132177e5956

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.