Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 06:09

General

  • Target

    2b4359f53e0b37f55bb14796e8419245.pdf

  • Size

    71KB

  • MD5

    2b4359f53e0b37f55bb14796e8419245

  • SHA1

    ef1c086de45b61665ee6b777c5725440e8f00e40

  • SHA256

    f9eccd82a40b03afa093c887b3efde9207918b864ab703017243fa88c4e12c5e

  • SHA512

    622a8952bf4f477ffb32f4af04bb8c6006af23e7ee5f5dee2556b909d1124f4907b0b2d705aeb6ac2db3defe4ff79fde3ba5965bee705f1a17dd4acfa64b142c

  • SSDEEP

    1536:J/tMld2WTZRQk726awr28lw3ysNV38yP+/A/QsikNsmeWOpOaZEWoPtzbWn0:9tAldWEawrnky8Vs2Vp3ymzaZklzf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b4359f53e0b37f55bb14796e8419245.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    29b196e5eff006978a8b35c5301ada1a

    SHA1

    f5c087633b6c6f75994d037a81da74d870948261

    SHA256

    78e67a9f1cb46c3f14a67c9a95dd8468cc9a057b6b63d03f10afd17ff2d036c4

    SHA512

    78a1554da485391a0ed5c1c82d8eb2065569ca4f4c8e007fe371cfc695ce93d3b2c1c3196976b83eca6cc97a99af4f5567217e399e909b07d886bf75660d5b98