Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

37664702e8...b9.pdf

windows7-x64

1

37664702e8...b9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    37664702e803a817c1884f11f643bcb9.pdf

  • Size

    34KB

  • MD5

    37664702e803a817c1884f11f643bcb9

  • SHA1

    e4a74695e21f35dd17fcd22a16a3a081d0743774

  • SHA256

    65a34c35159659dc994b2b7f380884bbc583633111a95bb2d6223be1dccd979e

  • SHA512

    7259703e85596dcb1f9fe6a0453396ad80a44aeef4758c39340eef8ee086cbbb9d41306d50ccb1637fc52b5a1bf2d1092a17f03302631d64b2b8b633b7bfb5bc

  • SSDEEP

    768:enUXBy8zM4Wy9Osq1Xveexz/giUnBFguvMJ:eUI8QygmJXMJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\37664702e803a817c1884f11f643bcb9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a41c825161b08fee5ef7eb8598e41065

    SHA1

    054d81312507007a8fa18bedba062204a8af8e59

    SHA256

    cfd3e57cc96be45a6e24c987dce8dad595c3841948ea9caebd11bdd29ad65a17

    SHA512

    ba5abe8ed0ca1f68f349dacc0175be8d0ef23a3173c3b346ea6199d4679506bfccaae69a22e29dea9110fd37e45fe5c48134cdfc44b1af259654f79a6db12e39

    Download Submit