Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

36fecf7198...fe.pdf

windows7-x64

1

36fecf7198...fe.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36fecf719846f9903a9ad6665a290cfe.pdf

  • Size

    47KB

  • MD5

    36fecf719846f9903a9ad6665a290cfe

  • SHA1

    759bf72c067a4054c513288f56a4029d1934f88e

  • SHA256

    b78a54cc8d0ae1a527f309774dc7e7a2382a8e5a12cb8fa0792929216aded464

  • SHA512

    88f7da7924b23e61ed6aa65cc6ee74ac2133a707e9d66d2943b38afbb175fa636acde7b4ba6271ec97eb5d370216c242866409c87ad465feb7ad8ed4e78ec836

  • SSDEEP

    768:hNk0JnRW2qkmBQ1emxsfizopPwPC7b593Jsxh2DAMVJE7NVqOLiY:hNkgRY+1H9zoZRZsx6vVJEbeY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36fecf719846f9903a9ad6665a290cfe.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2980

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7dcf9780abc219403718ed949bc342ce

    SHA1

    06bd1f6448720dd0789a26916ab3568481db2ef9

    SHA256

    84f8c4adc1fc35bca1e68920b6792af6facc9d1757e7b3c3f6d5000fdf36ee54

    SHA512

    7008a886adbb390aead40545c9f02f6310950c58b266be5e79b0b5da40384e996116c93b535f343a3d1c321789da89f2cbc88e5d59638675171891754577f3cb

    Download Submit