Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2382a320e3...62.pdf

windows7-x64

1

2382a320e3...62.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    229s
  • max time network
    44s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 01:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2382a320e321e598ec0147457119db62.pdf

  • Size

    46KB

  • MD5

    2382a320e321e598ec0147457119db62

  • SHA1

    8ed679a3bee7402f4bcdd73d4cb9b17ded1eca96

  • SHA256

    7296c3646c9597d83d7c2e6e10b33edc3e9e0f721cd2c5e9a2ea3601883f81df

  • SHA512

    3ede78184901bba47ef8d9faaa0c33bbc731a9d4c2fc9edb72ce01ad8ebd51b8db3a3c96aa2d9cb66b07c52032f2886efd0bd663642b4da9a7682438d340123e

  • SSDEEP

    768:6PMUR7GnynxsyUetFJe5gjOTPu912wF3R5iNR6B:yMy7jsyTFeQCPu912N76B

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2382a320e321e598ec0147457119db62.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9b99e91962368cf760a520c6a1ddf0dd

    SHA1

    603fbe64b04fdd94dfb91732bfe7b5ff4d3ba5ae

    SHA256

    fab9a73428aec88e3242222c93594a605899ecf8de7983370098243230d7538f

    SHA512

    f522ced791cd12df4f639e2450eb47deec67fd524b8f832828837e4b4c54391d8c196ccfcdec0715e69dde292aad749817fa3eab0a8593aeb4216e55dd1f3d36

    Download Submit