Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 01:56

General

  • Target

    239060ae17428f540127b85f5699bbcd.pdf

  • Size

    89KB

  • MD5

    239060ae17428f540127b85f5699bbcd

  • SHA1

    4c221dfbb2ad3a9e355b6f911de89cd63bfcb0c2

  • SHA256

    97b4186b25ea993d6e09f4a49479f6a1385bceb3bc139e72277148460f23bdfd

  • SHA512

    6593af7d47899ee723c2ec9d8df71c84bc990aa7ce64f138e51706c013d253c67829555e405bebf036f073c64229e229883027704b7747a589cb6410d10cca91

  • SSDEEP

    1536:oqr9VHy+pSYJoWVqigqaBTaHdhRQq4KeJkGzm3wwm7g3PoZWbpONiWgOC9mLosz5:LjSsJoWnQTOdhRQqQ6GZAPobNuQL3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\239060ae17428f540127b85f5699bbcd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f7a12b9874069de75e76be57071ad774

    SHA1

    fe86326250f45f4cc956671b4d6f20456d41cd3c

    SHA256

    167c7c78318c2c07bd3aff545b03241edb3bd18bb9b36c42882818018904b243

    SHA512

    1576222f2cb02e05e377e5a317f7ccd22b06e3d34d7ea88378751b256d81fe37ec165d07addc451a8b373de0e4340b156e0342649838ea1513681e0958683d83