Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1824b8b9f0...cb.pdf

windows7-x64

1

1824b8b9f0...cb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 12:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1824b8b9f0f901962e14fb41507b74cb.pdf

  • Size

    92KB

  • MD5

    1824b8b9f0f901962e14fb41507b74cb

  • SHA1

    db52c6dda8f3f05c2b7716d3bc44b04388dbc292

  • SHA256

    674e0b9eedd2fd0d461c2a19c9f329017520f8b9b67d35af34fc37ff0e3f2b06

  • SHA512

    88b1c59394e635487ffa8ca4b7ccc861642ff7071279904647b5959f279923cf9ab734523b2c608e0f1eabc25a5832a69d0407a64c99325114ed94238e297421

  • SSDEEP

    1536:h+evZqUOkqStgpEe6kw4jB2sTz6muifhrEnwF7o2T9SYgRkqAiLFgYVF2uMgqJRd:UK4nlL66N22TfhrGw9DhnEkqAinVEuMj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1824b8b9f0f901962e14fb41507b74cb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2488

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f3e8e5eaa79f39f1f05358fac4a2d312

    SHA1

    1b77dd79f0b968c4f167a0d6f5e96854c868cbd0

    SHA256

    b4d3eced096e709c7cd0a405899cae376f52ebd7a43ecc5a6fda5e58b18897de

    SHA512

    c2f666ab69d6ce9a3bab511429076844f38686c858ca7038f0ee28484ccc43953f8b58e71c9e68e9ee03573842555c2c035429bec08c2843e7a46d4dc20eca61

    Download Submit