Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:24

General

  • Target

    37e7a9ee15394f64253ded7102651bc5.pdf

  • Size

    82KB

  • MD5

    37e7a9ee15394f64253ded7102651bc5

  • SHA1

    056e2344e3d0015104c6067ceb5cff25593744c1

  • SHA256

    687fe906afb5f05a5b0a8d61395417f97d4d0dd4ff82024c9f592d21c4b17936

  • SHA512

    b7188a78cf8b7507c42c7b15248d8557d4a5c9511d2d8116bf6edfbf4f69433eff3134b9ece93f804038658af6d0846e7bcc71ca1b39140cd57a94e13e0eac25

  • SSDEEP

    1536:7m37ZlrEW6OeueoSntwC9DX6xwtzdRdQwA79KTNVWHpOvTWCTFC4voyu1Srp5:y9teur6wCuczdfQjhKJzvvCFyCS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\37e7a9ee15394f64253ded7102651bc5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    a2a11a5df1d5c643163979daa4aaa144

    SHA1

    2b82bf4c3e66549e2a2daa18ab274d654cd584bb

    SHA256

    7de671965396195cb26e0670c062e9f32bace40afde4fda2e1bd489fffe34a85

    SHA512

    71cdf5b9ae44a86b6a8c97039dbb49aa2a97e2eb2f452ca2aecd7058e4c3eff600ef0780a6855d09f94527244e8032b193b6097fa5f054b03815cd69d9f3dae4