Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:47

General

  • Target

    36a840f681b2a1dc2a32f2b38640ffdc.pdf

  • Size

    86KB

  • MD5

    36a840f681b2a1dc2a32f2b38640ffdc

  • SHA1

    e9aea32f68776aaba21628f9a76aff94d2d339a2

  • SHA256

    0825e44e4f08206a258952f6a95c847a8ea5d45cc3103b2af4ec71ecd3a90e34

  • SHA512

    2247ee2059073bb6b1e120977c1b2217e921ebff13c26789aa776f14ed09a80544401f78477ee34a77fdffd00feb572053ac331b7bcfecfd2f40874396deb41d

  • SSDEEP

    1536:dZyHRY7LnDnwXsXsMPzB+68ULPNmSi/VzTFUMwtPRW8pOGUYnhZJIWATuy+J:CHRY7LDnwXso68ULPNvUVtUMJGDvJQSP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36a840f681b2a1dc2a32f2b38640ffdc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b60b8aeaa006ebec9b97f5fb849da573

    SHA1

    6bea8de40273ce268ef5e444a4b9ca2a6db408f7

    SHA256

    089c4a7c743ecefc70a6e4b766f3d1c90a9288c646a09781f92789cfa4b9a2e1

    SHA512

    01ba11908ff2517dbc0bb88c0fccc295ed8ce1ffe668896cc2effcce505db6f19383a88e74c11decb57d7b5815fda86b800fcac41dcc956d99c7d308d0de09fb