Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2203d1532f...9e.pdf

windows7-x64

1

2203d1532f...9e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2203d1532f2c61c9039bec1d097ecb9e.pdf

  • Size

    43KB

  • MD5

    2203d1532f2c61c9039bec1d097ecb9e

  • SHA1

    0872a974bf829d4e0192260b2e0d639007098afe

  • SHA256

    23f3c410152b43e0ae5269048eb83a64b41b1a4fd6cc60c7c20dfdc49c573366

  • SHA512

    a54ccf938521243fe9635d8e0fbc30a2e1cc3e86891f4faaa961ec95d3af1dc7c006a19e524a202cf0614668bfe44c92339969ff8f860ce9983e8046ca2a02a6

  • SSDEEP

    768:9whsQ0txl/IijlOS6HzQYsABvuqzq/s3MZKlqI9uKKIIPt1XdV:9UsQ0vlQscz3zv3kKlqCu1I41NV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2203d1532f2c61c9039bec1d097ecb9e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1472

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    aa795af787fb6d0611bfe64395c15da4

    SHA1

    bdd50ed209d9c65a4de2a52b6d434946447b220d

    SHA256

    441701b3a766449de75bab047300bb0e8d28fe9dbd3df3608b72d9b756b26f86

    SHA512

    a4293e388c8ca1aa9cb3074df130dee4cf50bd96ef017355ddcae8d521577513086d5a31a13fd7717a1f7856590a3c2b371c16e055cba706b73f33111a743bb7

    Download Submit