Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 12:38

General

  • Target

    18c40eb445a26f24c291d60cdc2dc1a5.pdf

  • Size

    85KB

  • MD5

    18c40eb445a26f24c291d60cdc2dc1a5

  • SHA1

    312a50af0e17a7f8e474ebda1d373f639ba7a4a7

  • SHA256

    6c4381894e3f198b0c0b15604736edff1347b9b52488db56473dd6609d779705

  • SHA512

    6517a8fe919985dac73ee25f9ce888680ad2efd4c0a675c225a1e2a22b4739dc1d7af3f8f1e91e1c56c00125a3ec0ff3a65c25c7fbdc64c65d666187006a9c9e

  • SSDEEP

    1536:J8CWurL2X13a5JZ9wJ09jNxgJrMa+VdWHpOviyGa6WAY1iGn+lN:DrqXo1B9xKJrM7Jv7Ga64+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\18c40eb445a26f24c291d60cdc2dc1a5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    8832eba0dbacbb47a011998a1ae7b057

    SHA1

    5259701b44b9d49c1bf1eb4424cd8cd0e982100a

    SHA256

    deae102760d6960c4261736955f9097a1320f9d18641065718d262e0c7ac294a

    SHA512

    b843319374a53c15985716752fc3dbb328a2f508111ff1bc5e94a30321c7009ef715da70c3925c82b25813e3bbef724f5d0f1ce01baab656923ce9358a9389f6