Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

25c09e1dfa...b5.pdf

windows7-x64

1

25c09e1dfa...b5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    172s
  • max time network
    22s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 03:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25c09e1dfa358c2070e3373d0a9a98b5.pdf

  • Size

    34KB

  • MD5

    25c09e1dfa358c2070e3373d0a9a98b5

  • SHA1

    6208e9a6e6fbb9232746e9bbee9a32f6566917a5

  • SHA256

    8d714a18e3963f702fc89a0ea4be749c289e1e1949d81ee90c191107270f8798

  • SHA512

    beb8119196b92567efe1466aea1f3a915567ed7fd7a84146e66349efe96969549baa65aa4a7fd55d63da43ca82603c6bb1780d1b72f9cffb62c29385514f9fa5

  • SSDEEP

    768:DxEldWzJc95x72lQTmOOT0/7DQKshUVO57Ez:Dx5zJMIQTmOO4/7D1IEz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25c09e1dfa358c2070e3373d0a9a98b5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2720163c8363c6762b9d474d7af220a4

    SHA1

    120912ce0b5c18407f3d8dabdbfe676d4fb9a908

    SHA256

    cd2a733d30a6e7ecd493c918612f419d827d255a8aa6362632856aea4d797542

    SHA512

    63e464eebecbc0997827afc6e29e5210a0d80369b66d298b498a75ea03b2ac1bee9e4c60b7e52031756af1f6f6c40a9d905187dc0448f331e3d9f668d1a1dc29

    Download Submit