Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

214bc27c64...5b.pdf

windows7-x64

1

214bc27c64...5b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    214bc27c6436310d57b755acb083145b.pdf

  • Size

    34KB

  • MD5

    214bc27c6436310d57b755acb083145b

  • SHA1

    1ad29e4bd4569042307dc142d6c312c1181fd514

  • SHA256

    1fa2f20fbcc73cb26abc3e69dbab00e1deea57a32f191073cc424023b7c5decd

  • SHA512

    509cb5f5b0507ba8d1031480b0bbab98dfe2caba16b533d0fece2c93bc0f5fe95a7af79c4e1927da00b3bb43fbe675c19063b4d5a52c436c7a3eccc0d611b1cd

  • SSDEEP

    768:UzZKOQjMdcfaru4Ih40Aw7z3F9yz6Xabfa26T9:UzpZcQIhdAk39qg9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\214bc27c6436310d57b755acb083145b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a62baf8917c43771fe234830795df30

    SHA1

    62938edbff97dac56563a86376be88c523323fff

    SHA256

    e0e5ebdd3afce116aa351e5f84e45aa332b954b3531f9595857a7739226b6994

    SHA512

    12fd7a4e7d2b34f385c3ff849437216cb2dc7cd38a88b25902a82a4efe1c0af44cdf7a9b76e95f7dd16a37211c7a33edb229e00379e086f3571c99846a9ac2aa

    Download Submit