Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 13:40

General

  • Target

    1a4e38a7f381807487b9a3f17e71a2a0.pdf

  • Size

    42KB

  • MD5

    1a4e38a7f381807487b9a3f17e71a2a0

  • SHA1

    acef6c1e349660fd517fba1fa392448f09c7ea43

  • SHA256

    2bb3545f0b29ea83a0ce107e06a787b5272da19b9638812d70b9098ac500fdc8

  • SHA512

    996c1abba1e2d2874801a992ee19e6c36598ac0994180fa641022ea6199e155268d3bdfaf241b4a4ec4998975f48b06949020e9d710b86f77fc9f111e9075848

  • SSDEEP

    768:LFNQjn2KdAJD1iQ4DcaWoQNCv73SqZwKwLBakxqv9sTidH2Ea:j6n2VGW1NCrT2L8kxquT6Na

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1a4e38a7f381807487b9a3f17e71a2a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    812ba657c89b2ed02b307e69979f805c

    SHA1

    1a6f24c6b4350d3669048c747aea74721a1ecc2c

    SHA256

    c6c7b2f17ee85837c01539da5cb71aa547c0e6a69c8430da4d5b19470a4577f7

    SHA512

    3a9c9ced55ebe417fd2a895d28f24e98756135fa5cd7393f6e50a825f212e182d311de11bb5cf941b16e4bf44bf0bd18e01fb3a3a84ee97d13ebd17e021e84ba