Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

3805750adc...b3.pdf

windows7-x64

1

3805750adc...b3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3805750adccf8cf622703f4a6296b7b3.pdf

  • Size

    45KB

  • MD5

    3805750adccf8cf622703f4a6296b7b3

  • SHA1

    a9931a8a3d950e99cba0a35b8524ed577f51c30a

  • SHA256

    454599a3539017efa4470a9ef77d4efe26154586a6ae3118b2e7dc684b2b0a34

  • SHA512

    a4fe24fb51535ef2c2ea6740aafa59b261f274d4279846a45fe26d61befc3add4daa9943ba96bf8b5754e4c1642ccdf843233e0ad87448baf756f7976e2427f1

  • SSDEEP

    768:yHvbj9zh5TctJNnOSqE79fkA/TF/GsOVnT12FyawuL52fsFBX:yHv1F5TkuSqSDTF/G7VnwFhwuLwwBX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3805750adccf8cf622703f4a6296b7b3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2416

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8deba1c0653462a8553296c64489874c

    SHA1

    05110be2a75aa38d0e1305df0b90e84701173f28

    SHA256

    58bb6c76b2a96b9bbb59efa66cbf3f22749fb6291821dba013d021a19e081f05

    SHA512

    3d844ac3f55b2cf23e1a063fd3e8eee5a690ce017ef7df9c0d1afdddb71cacc795c3b649dc1b55ae7f5ea38b957613ba888bcc66d649d8c94f065c9040110cb8

    Download Submit