Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

3894003364...55.pdf

windows7-x64

1

3894003364...55.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    389400336453af2540433a01d283e255.pdf

  • Size

    42KB

  • MD5

    389400336453af2540433a01d283e255

  • SHA1

    5089ce70b62bc1a850999b29c1669eb73ce8535d

  • SHA256

    c62d43a7bab4af84b38981c96b1fdd467a050cf10dddb150c7ffbfea48bce928

  • SHA512

    c5d425f4bb836d6e8a71a2adb6d6adef57e890690d5b6c37ba6bb7bdb30c7a564daabbde349068ed0085245731ea4591c04fddee7f94329af69d07fc4a25b53a

  • SSDEEP

    768:+02rUlcUxk+sW4hd50eiKDKZUyihUYe8c7/Vq3ngJKks:P2vvpW4hdmUyaUYn2/+gRs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\389400336453af2540433a01d283e255.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a844fbad7cdbdd687ac97c5e29c86d49

    SHA1

    7315fb05e0c35208c969c4eb1c24dca1649a8f1a

    SHA256

    a900bd918541c2fff41cc14dc186b536d771d154ccce484e8d41a7ed658b1d9b

    SHA512

    907ef462ffd8079c083994d22243c7bd202a2780a9309584ed691db7cb85d59d52305bf57f939fc862c3a65450508a0db2e5c594d0e3d4c9ab977af2c68676e3

    Download Submit