Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

3a1e345fe6...3f.pdf

windows7-x64

1

3a1e345fe6...3f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 14:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3a1e345fe602bbe23c1dd2891d1f463f.pdf

  • Size

    87KB

  • MD5

    3a1e345fe602bbe23c1dd2891d1f463f

  • SHA1

    976744f47b4386369ec6afb9c90b8ab4a1e0a16f

  • SHA256

    1fa6647eefa3b972a47efbc31d3caa8df73bac02eabed87394f8214927abd897

  • SHA512

    29c365233860456b89f6a577173de0caf54e2b8a1a3cd9edfffcdbf0a345881e26108359961c13948c8028c5a3edb089a019ed544cee72f5f1a65a46105b42c4

  • SSDEEP

    1536:9oXZoGCxQdj3nUNTkJn1o1BjTFD7dSMSwag9zxQ59YNADdJueIsgWS0uPGr7IIT+:mX+GZjXUN4J1ozp7drQg9aYApJueX9ur

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3a1e345fe602bbe23c1dd2891d1f463f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    51d4126aa123a2cb05245126cfceb757

    SHA1

    725e04685e9bf1544bb9cc7f676bf3cf3699c065

    SHA256

    23ac5251e0ca326f707c4f0705ab0e7c3f6d4c51822754a1037dae85c76301b2

    SHA512

    c223a724711a1f6248a5e6e0ccbbf1156e9e3ac1458f397ae8adf78733025e2811a443581df18d1fd856148d146beabbe273f9523317dfb6e7772226252fc4ca

    Download Submit