Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2b4bdb688e...df.pdf

windows7-x64

1

2b4bdb688e...df.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 06:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b4bdb688e2f0808ef6f4ffdb6ec58df.pdf

  • Size

    72KB

  • MD5

    2b4bdb688e2f0808ef6f4ffdb6ec58df

  • SHA1

    b1f94f9490d6001cf8f9c5e554b7c989bf034b6b

  • SHA256

    fd97438e62279b1213841339a3b7eb95d3a6fca56989d531d3f578ca0e77d19d

  • SHA512

    fac062b84d3561d399fd3ba5ea54b3d1a3abf89f68e038b37f7bc05a2ebcd57f7d873772ed688dd4d2d5ede4381ad25a59779053bf3b9fcccd588a910ce0ab80

  • SSDEEP

    1536:JN22SrbHND/Fz7Yz0YqrCr5pWcp1LkzZsCN12o9yq/B2s1ppqTeduy2qq4y:322oBdztreHnid12SBRQeztG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b4bdb688e2f0808ef6f4ffdb6ec58df.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    559c5254331b7d7aa9f938a5f27cb853

    SHA1

    14acdcad60c4cb52551a534a74c3f17c50976f7c

    SHA256

    8c786352d17301c5fc183b5c01b6722102d3c725599c624fc10a8fb4d7993483

    SHA512

    9bb2fc4bd06b211b69521bd91e9091037d1ca1cc3a2e0e941610638b72eee260e04403b923a706bd68d78858d468c84421d2e477dcb9620f5a7e802bec1e3f2b

    Download Submit