Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 15:55

General

  • Target

    3a87dbb7a2060652b5f58b1b19384ba2.pdf

  • Size

    82KB

  • MD5

    3a87dbb7a2060652b5f58b1b19384ba2

  • SHA1

    d193bf6b19c11b5db530d557b7ab4cba73a8d23e

  • SHA256

    396827577602e1dba14f28c5400376e62e3f73ba3eebcab9c60425c5568210c0

  • SHA512

    49948bebc83dd5719ea35600d3b51170e09710bc52ce21907e41d7c7cdb3eeb35fe82e8b5867d3f024c61f7af428aff90fbdac6166fded87dd450ef1796406ce

  • SSDEEP

    1536:/CMEsCFcbZWckG4N3NtkvF5DQBA+G6PEFsH0/mjTI5FcEJEf/a/BdY6uX9u6:AYWPGw9W9hV6PEFsaW05FcEJEf/a/vcV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3a87dbb7a2060652b5f58b1b19384ba2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    adc3f54a0c652ac552bea400ada8502b

    SHA1

    00ebff3b555c693bd3579de69c6747221fe46c33

    SHA256

    af95e1d4c443ace3b59fb72442f348cd6411ef72be6c8780f0761b1285624e2d

    SHA512

    da2ca825eabfcfaafb15e5c48df839523f9f58645c06a9300b81dc83de398bd708a3e0aed481dbd50826e9657b50d163926df91958d39be6749de071485583ee