Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

2935db8a96...db.pdf

windows7-x64

1

2935db8a96...db.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 05:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2935db8a968eb8eba205fa7418b7bddb.pdf

  • Size

    16KB

  • MD5

    2935db8a968eb8eba205fa7418b7bddb

  • SHA1

    844d81ec67804fdbe8d60e7e96799ebdabb8f564

  • SHA256

    9ea222182e4cd3f8da2e926c732fbe2c3db2e8c47add198b789a20eabf814967

  • SHA512

    ba07096b41eaf1e053b694a1879198ec2ec88f998e8d380d9b13ae3116deeaab22b0e1c400a90115997e45c59a05f73bd49615c868bc0c8b14753c0d6faf2302

  • SSDEEP

    384:9AsFlS3K6XgKV7cAgdOpW+0dGabbiPJejWi1wsSl6b:9wgGzpD4BWeFis86b

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2935db8a968eb8eba205fa7418b7bddb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    aca86cc6fd49d9ba911edd93bd849451

    SHA1

    a4de27620d4259bffb57175338697157bb23e07d

    SHA256

    b09e3415924ab5365884ab731298be9c709846eaa38cf41bc7eb281117d9d566

    SHA512

    01c68f480c4327bc996d27bee4613480c4fc98f50c3638e10bcc6f99e2818466fdd8799910939a91786bc4d18debc0a4e6883dd6127475379a796b1cd286235a

    Download Submit