Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:24

General

  • Target

    2198bd1412b30a4f5580b3a3e5298325.pdf

  • Size

    47KB

  • MD5

    2198bd1412b30a4f5580b3a3e5298325

  • SHA1

    35ab13f186df4d460edeaba8c739f0002e5031ad

  • SHA256

    e917f60e23a26853de8c26fad77924f1bf1091304cafd64413d22a15c7549d19

  • SHA512

    c92b74cedbab35c0a2d445fa01bb4665274dcb1f1233fa485c6e5814d61b300dc618f3a592098c3bf19c94cb60f9cf1fa8bcb6ac54abb181d0dd43d69bc016d4

  • SSDEEP

    768:8sga2uMJYAkmhWjPsOuqaNUzqFsp9g4C8ZqtrnWNt3DhS10uQejQQH7PL8VhwNAl:8sCLymh8aNrF8djqANu0XejDH7PL8Twg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2198bd1412b30a4f5580b3a3e5298325.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e88e653f3eb099d76486bcacab152fc3

    SHA1

    9d195400df74737cd7c1956ab7a10d69ce1b606e

    SHA256

    4496da695c2428e6139c0c935be7bf3ca58a4cd884007ff7f606df554a8db524

    SHA512

    9b089342d7c4cebc0f9d0f1dc19a6295a492bfad74b4ceb0ebb34070e48c28816eeafc15c675304d8c18f8e3097ad0af61c9d7c8a9ae81c69e8e2e53684da3d4