Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

27ca128190...b9.pdf

windows7-x64

1

27ca128190...b9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 04:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27ca128190912427dc2c389e4777ffb9.pdf

  • Size

    86KB

  • MD5

    27ca128190912427dc2c389e4777ffb9

  • SHA1

    c60e51ee2cf4a528c3880c6f44fa4b12bfc98c8a

  • SHA256

    19a1d263a3fd0fcdd9704b79e07f40a47906325150b1c475b851b9687b1d3e19

  • SHA512

    844928c4ee6716d2f590ae599c2eab7e1e7cdb3e47bc66c65ecceb51a55bf6e217828b4fc253dc685db7b87f5b594e66371cb2f198d33b7fe4a3cd590bc1405e

  • SSDEEP

    1536:fXp+2OfktIlxUSEuWGgCYcSQjhJ3AYSC4zYZHIb73WkNpOPaWyZBx/tfv7bcVVIM:Pp+2zW3UjIgCYcSQ1J3AyZobcP2lfcVp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\27ca128190912427dc2c389e4777ffb9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e213b821d8635bc60769060ff176b38b

    SHA1

    4c104c4cdfc6640b94715eb161648a91b0e90345

    SHA256

    7e7d5779538e43357461c5c433fb061257ceb791be6b4c9151d5f400b2485d34

    SHA512

    ecf0e3a70ba84a425c88d8cebb445f6c762421f88960d15f152481d77853d2b1b57931fa35e1621cd9e310e2fb0ce37125953fff89d641a4de7300579f9a8ee9

    Download Submit