Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

20ecd6fa50...2b.pdf

windows7-x64

1

20ecd6fa50...2b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20ecd6fa50c425f9551d6c1bb819c62b.pdf

  • Size

    43KB

  • MD5

    20ecd6fa50c425f9551d6c1bb819c62b

  • SHA1

    51706f6e8b534e4dd4e91e4ccaa1281ebea02e9e

  • SHA256

    d295bc61530af033965dc7cf01162deb2b1200e735e58b3b71004a7c0b43f9ad

  • SHA512

    4e1027564d7f920905722aad40f9629fc8ad43dc0f20d8a0401ca374a2e805f9d3ee64c2abb2637b70518de7f139c7c4c19a3ff863a0f7f26e2116b7fda9706f

  • SSDEEP

    768:XbldjmENa1fXsh6PwDk/+C3871QWCQXOoV0ph2LqpJx7cODxlh8:X5RmEjDDk/f301QW7XOmgh22h7xlh8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20ecd6fa50c425f9551d6c1bb819c62b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    04eb95b7e46791942fc075b598d04fb7

    SHA1

    cadc31b60082e8078d53c8cce356390d868b6da2

    SHA256

    868597866a798d83dfed2f1cc70082f63a3e2d0b56476bf969039c69293fac07

    SHA512

    a7683129c080b6ac7e9fda4e553e360225091a30add96fc3420e35be5f22d569bf712579a4539cefb9dbd8788c0070415a5c80be7a0e9d407dafa36f2fecfc0c

    Download Submit