Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20231215-en -
resource tags
arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system -
submitted
31/12/2023, 15:55
Behavioral task
behavioral1
Sample
3a87dbb7a2060652b5f58b1b19384ba2.pdf
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
3a87dbb7a2060652b5f58b1b19384ba2.pdf
Resource
win10v2004-20231215-en
General
-
Target
3a87dbb7a2060652b5f58b1b19384ba2.pdf
-
Size
82KB
-
MD5
3a87dbb7a2060652b5f58b1b19384ba2
-
SHA1
d193bf6b19c11b5db530d557b7ab4cba73a8d23e
-
SHA256
396827577602e1dba14f28c5400376e62e3f73ba3eebcab9c60425c5568210c0
-
SHA512
49948bebc83dd5719ea35600d3b51170e09710bc52ce21907e41d7c7cdb3eeb35fe82e8b5867d3f024c61f7af428aff90fbdac6166fded87dd450ef1796406ce
-
SSDEEP
1536:/CMEsCFcbZWckG4N3NtkvF5DQBA+G6PEFsH0/mjTI5FcEJEf/a/BdY6uX9u6:AYWPGw9W9hV6PEFsaW05FcEJEf/a/vcV
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 2504 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
pid Process 2504 AcroRd32.exe 2504 AcroRd32.exe 2504 AcroRd32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5adc3f54a0c652ac552bea400ada8502b
SHA100ebff3b555c693bd3579de69c6747221fe46c33
SHA256af95e1d4c443ace3b59fb72442f348cd6411ef72be6c8780f0761b1285624e2d
SHA512da2ca825eabfcfaafb15e5c48df839523f9f58645c06a9300b81dc83de398bd708a3e0aed481dbd50826e9657b50d163926df91958d39be6749de071485583ee