Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

20ff6fd486...a0.pdf

windows7-x64

1

20ff6fd486...a0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20ff6fd486d52c57df2239b59f80c0a0.pdf

  • Size

    33KB

  • MD5

    20ff6fd486d52c57df2239b59f80c0a0

  • SHA1

    d5f88e59049bc1f18b9125d74ee1d241294d23b7

  • SHA256

    97ba514b7133136bec31b6a7ee9281cd9f4078574b46b10240a457c2cef88c63

  • SHA512

    5f936d6b3ea004b08b5add606371c3f07d1c906ad2553f2d5394fc445cc99fdca3c44a50b7024b1f894553764a7b200fa05356ee192cb4adfd5603160af71e4f

  • SSDEEP

    768:K+3gYSSpZILzblClALa962OUKSa3rAkTll4kbE92Kb:Kig5LzolX62XKSQrAkskQoKb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20ff6fd486d52c57df2239b59f80c0a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2fe3796fc3d581f3e08f1dc6ed62fbf4

    SHA1

    735a7c7e8461cdce7d08f21280ad3a16fe9df555

    SHA256

    32d343b41627a031493362a52b5f855262f116973a943ea6cce302313a6f6e11

    SHA512

    821c475cb29938a6f131534af3b2acd9127fb1f7afe09ede4c866c4b6b60aa056e3cf383b4e4c49c11f06047491338f987e257bdbe07f00a0346d75b9b2f9484

    Download Submit