Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:55

General

  • Target

    36e9992ae2e60ea31f75610c8bc777a7.pdf

  • Size

    88KB

  • MD5

    36e9992ae2e60ea31f75610c8bc777a7

  • SHA1

    4af8c4d6ded5783ba28fa7310da0bd419f598657

  • SHA256

    c022b14e5585f1b2904e34eda699a147f47ebff4289ae434719390ceb1af98ef

  • SHA512

    e64be09321d6fc7cb2109993d6a25351afc8666afefc85fc80ca839cfc07cb92e7e7d10a1ad05f7b7067058342cb12df505942a3e24c621d6fa72983fea3a0cb

  • SSDEEP

    1536:oroFuOT7h0FxIstNmeT99Z0PKb9WCXvI8bI/w2ddWX3OPrW6pOu2dW4U:t5Tl0QsPmeT99Z8I9YBjwu2du

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36e9992ae2e60ea31f75610c8bc777a7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c7e08a5fb9f04bc2d9b388aace8b2beb

    SHA1

    83e16bf63188efb069453677a65b140c39c019fa

    SHA256

    bf63e236ce6cd2d3727ad8aff9eaed82ddf603d442cbaeebee7620306767337c

    SHA512

    df74ffe99a45909562cfa9614beb6f83729176433b9fe8f5110b085073758fc127b7d6f42d40479aa779bdce7153b15c1d06dedd8bbe837dceb4d43b49e34f82