Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2148d5215d...5d.pdf

windows7-x64

1

2148d5215d...5d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2148d5215d7e4ff4511d511e0907ed5d.pdf

  • Size

    89KB

  • MD5

    2148d5215d7e4ff4511d511e0907ed5d

  • SHA1

    d6fd4e53e5abca8b17d5d4034ddd9c3f549050cb

  • SHA256

    5f07287ef62b05bd1f3914380b30ad80c7b70476f8886563c0150653c94b1a4b

  • SHA512

    6b0c3d938b0fd2ad02f4f2aa5e08fc0a6969037f675d96ba4e0c61e0f3dd6773c7e6b20b4d9f3d9d6f618cca38dae38461a66c4f46f5aa35ffca87c952558ae0

  • SSDEEP

    1536:nLT5asLJfisqMOUg+HpSXo39bNodoa2oWL93dGvcfWOpOwr+JnMTkdh:woJ9q1+JSXoZNwMEccwr+ag

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2148d5215d7e4ff4511d511e0907ed5d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    60517fd7dbd6077045f060f4d4a64ea1

    SHA1

    0e19ffd409b2b3b40e46b0dbce23fa441a9405e7

    SHA256

    ab5dbf6467ce6be2b7cd1a522181d3b5ebef3672b1f8c768a29174b95716a376

    SHA512

    2879152e2316c94aef43f511203894e0f0e496a1827e59c024afafca9b94e9e9077780dbad8d027ef3c2086cec038cfd6aa7a7a32160eb3b1f448908d0b5f8cf

    Download Submit