Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 21:25

General

  • Target

    1cec9dc7155488b690986c7fa8a1b582.pdf

  • Size

    42KB

  • MD5

    1cec9dc7155488b690986c7fa8a1b582

  • SHA1

    1bee9b97c34dc7303e4cb7d612ae3e0bbfc69fdb

  • SHA256

    f1ee0e8f08d35f3d52da04f12316c01f05b1431e07284eb0a7f9b8caf8394a68

  • SHA512

    663a13a51bbebf520c9c5a9ba2d13d09b38153064259b5c008500c69f131f2dfc618199c6f45142dc96adec07fb72dc08340686d21949fc7c138674145427d81

  • SSDEEP

    768:HO7ICWOoFz5jmQMmwx0cw6+yXFt5S+6i/8tM5qdYlPxEzUwmekna:mICWOo/HfCXFtGg8tMRlSUikna

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1cec9dc7155488b690986c7fa8a1b582.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3036

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d72b8ae94084ea0f280cda9fe6609c0e

    SHA1

    12de95e60f346ccc1c2962071a53a07060c682e6

    SHA256

    b58ae5cfbb04ea1bf235981d638ebcdb9e349be251c730b8f26db89ece95cc15

    SHA512

    ec133fb7dcc452d4b185c6e11819224da1941cc74ffd088ca9834fa9ce55a62e1b471f3ab4b1237f57acca25c494f9cafb55547d99c6304542fc660c70c2c308