Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

378768025f...5c.pdf

windows7-x64

1

378768025f...5c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    378768025f7aa05f8adb0c3c42f1d35c.pdf

  • Size

    91KB

  • MD5

    378768025f7aa05f8adb0c3c42f1d35c

  • SHA1

    c1417d1bd7abc8755198e9934350266de80c1d0d

  • SHA256

    ff60696ed4902ae2968ae000f0e218755449d15420634c78fc77813008a24ef2

  • SHA512

    49436d885e303cfe99a81f4d5210ab6660b6b842db5f3ad4d71d16d20371c2990d7ddf1c1fa3d536122c914b551156d9f132dc8b16d2fc944c2be024393b4194

  • SSDEEP

    1536:luZjY439xS7tiCOQUr/kS8FtbtoNYrqXhKrOG7EEor2qW1b6CzHYW4u7sOXWUpOg:Yu0mtMn8dYX/Jr2tz4Ju7sOK7c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\378768025f7aa05f8adb0c3c42f1d35c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    29df3dbb52f0d627a24c5299bf828a51

    SHA1

    e01ef7080132da3d46d6ed3b7a7eff19342a9f3d

    SHA256

    b45a2fc1e7286430ad71c24bfd0dc342320677419a586f4127439a89ac4bcfe8

    SHA512

    a5df8eb085e69e4a75eda623aa714392efdfa029c0711fcfa8865c61eee2ff7b5ec7939dbfea84a81fcdf6cc97c7236f5938ffd9c6944a5e45c0cde959cc6c81

    Download Submit