Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1ccda1d5cb...f1.pdf

windows7-x64

1

1ccda1d5cb...f1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 21:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ccda1d5cbb2120cb1b187e40f5df2f1.pdf

  • Size

    94KB

  • MD5

    1ccda1d5cbb2120cb1b187e40f5df2f1

  • SHA1

    f835525b5262e9ee16157d73a030c468b451dacf

  • SHA256

    b0473d12cba2b40eec11bcc684a5eee24cb753f823189bd86f958c76ec100f98

  • SHA512

    6b541ab0933efeae847a0fb7f3e81d2dc7d44cb0c878fa37409b2dec81ece45dc792703181aa4b7933230d15051d3ca59e90abcc9c76223c3d66fd72271ad656

  • SSDEEP

    1536:1slWUpCvTaa/cedlICRi4bWj5H1pUD0cT3LAQB/OpqEfmI1I5+74ZIXDW6pOu26H:qW1T5ce7Pyj5nUD0cT3LA/pXuI1u+u2P

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ccda1d5cbb2120cb1b187e40f5df2f1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6b4b39b2ac71de22b852a59ecf5c6a85

    SHA1

    2bca1a97132ea5dfad6b516c5cad48a0287ed7dc

    SHA256

    7eddee391eb8adabafda1bfbb8d58f6d50735137d780141e603fa232e4be47b7

    SHA512

    4ffcbde6b2c3c5b38bbc902999afdbb7c5e861352aac98b7863840f809fecd5e045c556fd10125eb09204371d8ad27d0bdc8f10bbe4d0e9902cafcb1833b9fb5

    Download Submit