Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 03:50

General

  • Target

    26f5058dc901a109bcdd54339d7099af.pdf

  • Size

    33KB

  • MD5

    26f5058dc901a109bcdd54339d7099af

  • SHA1

    76a51514deb2203342ef093d9d7cad9cde9f3e60

  • SHA256

    c036c7bbfe0338b6d96647bb263f076bd1e4629389800f2f4766b2c8da24ca56

  • SHA512

    54393b74c1d31be5f9ebe9c80bc4d421094dd96a30d91e45a76af2513602f9baf7d43db1a668bca431e9266019f3cc7c540587517e8dd3f030868f9cf4eb1ea5

  • SSDEEP

    384:JvCgRI7grUn7u1jqyoggjkfzIsxxZEiKxRbQmWzGdoXy86XCUSWRYaus8Ok8XgG7:0p7uJogQkfTxOjX+G+X2nOIbI/BQRFb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\26f5058dc901a109bcdd54339d7099af.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3060

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b52625802e965331f71721c5d42a4011

    SHA1

    e782e6a3a7fc9971dfa6d36884f6d10079c52140

    SHA256

    3b2a9282d5b453270a0ee0db80b6df35a34c6817edbc870beb6140c3a3cd1710

    SHA512

    0138264f54f9fb67e865c774acbf78fa59da9a6eaf64b724ee080c78d0b60f5aee9567c7add42ee6e1df772419d7ea28bb26283b3ac87eb005d873240ae42a40