Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

36ca888301...38.pdf

windows7-x64

1

36ca888301...38.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36ca888301db71faea5a3fa2fdb82d38.pdf

  • Size

    114KB

  • MD5

    36ca888301db71faea5a3fa2fdb82d38

  • SHA1

    3969a887af0a6a2c853e60e712d3bc8c8e6380f2

  • SHA256

    57884b7c62cb3bc58d1e97d2e3a86221258b2ff9334183f18a34dca67a7e2ff1

  • SHA512

    9a35166d617a7362e99ecc3249e25cf8634c5cf0eb41621c4d9059d46187296ab024a57ea350a388a6a2b7f375446099796d2fd4904c3aef5009cde3b47924e7

  • SSDEEP

    3072:y+896NuT49ZIFrDOVecy+5IglmDmzVVQ6WCZ:yv96NuTFrM5IyH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36ca888301db71faea5a3fa2fdb82d38.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2076

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8194df2f7e0c16b2bf5ea345ad8a755e

    SHA1

    fa414d1c427791780a3e845d1aceaca75d621460

    SHA256

    fd4d07407204c06624607221b07ea49e56b860ab90ba0b873a4584a68acf7641

    SHA512

    013b5a5bac7ef59ca775fb375d3e000aa1b412d5c27d9a81c52cfef856420d94f5f3db8b8f5a3d8bb16e7571bacbf2d7c35d83c4ad7b12122431bd8a4bd6fa2b

    Download Submit