Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

23bd6b1d3a...a4.pdf

windows7-x64

1

23bd6b1d3a...a4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 02:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    23bd6b1d3abd3d7ba5bee67bae36f8a4.pdf

  • Size

    78KB

  • MD5

    23bd6b1d3abd3d7ba5bee67bae36f8a4

  • SHA1

    dc12f9f2a836fe54bd4f463836d55b3b32799799

  • SHA256

    7879fb0a0213eccde03f4a7d67af6441a8adb0925f1ec64caeeb6eb8757b8e2a

  • SHA512

    fc82ab92c3b065de23e4840fac22a5c57a12f84243349fe1ef8c282ab2dfb2c1d54508ff08232f63205d2aabfecf304c9142f1fb2b571ef282820c7762ae0eaa

  • SSDEEP

    1536:N8J9ssCilwt/Q95dRopqkYHu89MU3b23l4hzgrxC:uJJXlu/+5jo589Mtyhks

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\23bd6b1d3abd3d7ba5bee67bae36f8a4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2280

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f61daddecb8573ba21ac38574430a448

    SHA1

    6abb943b73fa36ba588283fdd4928dce8ebd50a1

    SHA256

    87d1d48ecd29f142a965ccd783af9d9f4637a31843bc67768068e5febd2f8d76

    SHA512

    802406f5e7e632e956b38c65d2cb8b9989ae3bd140e10798c409675ee7aa6f4e9f0af70a0f728b08251a47bc9fb1ef72872ebf3bb3027040652b557b35566f73

    Download Submit