Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2b3eff6289...96.pdf

windows7-x64

1

2b3eff6289...96.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 06:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b3eff628941ba6cc39d27dc2ca34f96.pdf

  • Size

    46KB

  • MD5

    2b3eff628941ba6cc39d27dc2ca34f96

  • SHA1

    a5712db816cb0980bf10133b60e8afa85b6efdd3

  • SHA256

    fbc7c0c71e1a69a905daa9396c66c34f2ded88928fc88e428b3c9e041d30b6a0

  • SHA512

    41bc46e3560f879d02dea6378714ab1a59e1b1cec529f1cee467e4d87fa80cef2a3708fb979d8fa4c5187fde87d706101002a18cbe08faafa56de37cdfa1bf65

  • SSDEEP

    768:+5T4igCaTckH164rZyY9nxHVHjWOl4+t3t6dXqJllzWObCnPz96UqwarG8zmCT8:+N4igco04rxntVDWHU39Re9018

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b3eff628941ba6cc39d27dc2ca34f96.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f44123597e9f455e11e426eee2cf58d2

    SHA1

    ca984d7201edc3b1f15cbb1ef9b0d093c24336ab

    SHA256

    d1c36e898b8909632cd6fb1022c2bfdbe39c8aa1190bd83f7316b29c88d89e80

    SHA512

    c2432ef1953c4ad49514fba43237f474ee0b66da04e1bb32d1fd38ccdc5357d836b27d7ba041b0e728aed10617d719c59f425a738f6ca4760938a5d1e0b75466

    Download Submit