Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 01:21

General

  • Target

    22c6b35ac01c0da409ada0d044a14dde.pdf

  • Size

    23KB

  • MD5

    22c6b35ac01c0da409ada0d044a14dde

  • SHA1

    f76e071f5830406c6316f8859ef2d7ebe0820da0

  • SHA256

    b70710956afa6fde62cf1a6b0b55765a6a470704a7d62f1c6f5b96ca2c289b77

  • SHA512

    277f392f97febbf35d05002340cd3409bb85a56e743b351926640595afc81b7d8115a5ad0b5a6bbb17b1c3e8d2353dc84d4460bdbe45d5dc5a114351fcd97310

  • SSDEEP

    384:0s1v1+d5y8xqfK4V69e58LQBxgNKGSIY1AQMoDtIuBcjIiDijX1:xNAdDqiGJ58LQBxsCAZoDtPckKCl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\22c6b35ac01c0da409ada0d044a14dde.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    5ab5521544904b9d5ef8286778f7bbbe

    SHA1

    13c45ffa182f2b3a418332f119dbd92df770007b

    SHA256

    395df71902563e7275b120b8e69294d0e747e83d579e669113ab27c36d1ac260

    SHA512

    31bb4f74fc57cc8a1c011eac0d76b3e21b0578f1d993d8af99a67d7dd67c1b6664c8acc104df5f2f123a2df6d3e4d76475a3b80871ed8f06574753fe814a4d76