Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1b359dbe07...1d.pdf

windows7-x64

1

1b359dbe07...1d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 14:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b359dbe07d109e8d6eb13715c4bd11d.pdf

  • Size

    113KB

  • MD5

    1b359dbe07d109e8d6eb13715c4bd11d

  • SHA1

    6d0a1a3f2ad91ccd2e07b664444d7e79af5c7fcf

  • SHA256

    2f3959a295e89b378481776c0d6dd395337baef13402afff2235b03693718ed8

  • SHA512

    b1d089f81a249dddfb72033c4f995ff0f4be1900279b0761b4171d4a9fee33f0bca62599b33fcebbcf3ab4b9e848d1424ac1877afbb16ec532c962c8b1402046

  • SSDEEP

    3072:9qqRf6lDAJwhUKG3P3owFVrOvjjLIdzD4qZhtQ9G:8qRE9GNgsVrO0dX4q7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1b359dbe07d109e8d6eb13715c4bd11d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d5892cdefca1a929c25af914d71269d5

    SHA1

    d7ce06002425883411fb66c451c63b030631c1cd

    SHA256

    63649a6075f217ec110c6d0b10fc22d0f5ad95c9ddd09564dd6eaddae2b67704

    SHA512

    4972af3a510fe36904c36fede925df642de90f95d461fe0c3533e709ca8ff7e101d55bfab96ed80e4132404de6c2156e9a1c03673decbf64b5728f0b84cce53b

    Download Submit