Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2697bf7852...1f.pdf

windows7-x64

1

2697bf7852...1f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 03:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2697bf7852a168c255beae4d9dcfd81f.pdf

  • Size

    35KB

  • MD5

    2697bf7852a168c255beae4d9dcfd81f

  • SHA1

    5b7d336d06e7f6dc55512c68bfebd18ed6a2e559

  • SHA256

    934f8bee311c8f374fa108383e6f82666e09b921174ea86137d4418eb3f2158f

  • SHA512

    96453f81f914e4c93a7f0ef4501133adbc61ba034b8dcbb491796ac074d28a1ea8b486ac0b79a910ae1759cd7c532c7d68e86f538b41982e94ddcd297d492272

  • SSDEEP

    768:qeWyEHnegadLKsCinFEbXz1FPjsqMg7SobqZOCOzZ++Fllllr5DL9Fukg0:quEegadLyUFyj1tJMsS3OFFrtBwkg0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2697bf7852a168c255beae4d9dcfd81f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cdcc58057fa1104f7fe947ce8bd5b4c0

    SHA1

    40d47916e40665501c01e6c50b9f545fa50dea69

    SHA256

    9efbff4432bd7ec390c6aa7e84ae5a4bde83d22097b958e16c86e1d10530e11b

    SHA512

    a1cf40d0c29f0324a1025bf7f0f513876ac49cd3bc1a85a96f1717b520f462bca5851bc019a8bb0157e17d557ae63b8dc3eee306b241bae030034a28c42e02b8

    Download Submit