Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 03:53

General

  • Target

    270ad1b1f79c08e788bd85a3339f20bb.pdf

  • Size

    74KB

  • MD5

    270ad1b1f79c08e788bd85a3339f20bb

  • SHA1

    b586144697a9590ff12f82883eb03b9b988319a5

  • SHA256

    0704651274a700e3a308f9137baf7cfaec4b8e1015177750266a2f5c5e35ebd9

  • SHA512

    3b766c255066a22d0166bfe4a6c92457f7f501394e3a4578684b6213f350d1b9d3811f938a78bb03fcb8ab717a270ed2b57505623c2b62526a51d4d9d272c521

  • SSDEEP

    1536:Cs72Z/zI3fDCS7W/5f6a25kV1rTA+DiGD2us8H983eexG7Ix0ERVYJEO:kZc2S7UfNOczM8H983eexaA0ERVYj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\270ad1b1f79c08e788bd85a3339f20bb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6586072c968a21acb72c5a495d41e4ee

    SHA1

    abf85a503158cd17ca0d959be30585bd4d130ee4

    SHA256

    43fbcdfc2b88696e51579359f6c29b56b6e1280898c72152165ae2e1d3d4a934

    SHA512

    83922394014f1e2d981065f04b03c40ced0179aa4cf4e2e54dc3e06c20c9e785a2d06f52f0552cfe8543c589676d5faff2eb602ce1691572630116e6b1e1bea8