Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

3d0379efa6...b4.pdf

windows7-x64

1

3d0379efa6...b4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01/01/2024, 13:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d0379efa6fd8e278a6e8a2196e724b4.pdf

  • Size

    90KB

  • MD5

    3d0379efa6fd8e278a6e8a2196e724b4

  • SHA1

    040891976454937b8d554794d5f79aa66a70152b

  • SHA256

    3591a18d340094833fd632a3072f94dba11c04ef916b21a2da8c506faa89eb4d

  • SHA512

    3bac9be5a6c1deba70c84f06a53e185d7d0b6f9139cfa1d95e0affb65a48ab53f52a995535f5dadbaf1e44433d5ec461379b8ab141e3689d8528c2ca3463ddcf

  • SSDEEP

    1536:m2xgsrrIosR1SVOnJHPR4jifv6LRTxGCzYxKlIv7nWw261FGWHpOvfnurGQBI:Nxx6SVWF+ifiLB/cxnv/TmvfurK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3d0379efa6fd8e278a6e8a2196e724b4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5f5b6ba1c217e4bf5d256733f81491df

    SHA1

    7d402fac23b431551cb4e9ed69484b1c1b501a84

    SHA256

    157776ae5ab7b583795c325f052d026ff83a295f1b4890f5bed5571967f2610a

    SHA512

    072feeadb9ba3d8c5d50528261b316eebf1316e83ea35db3651c909bfedba5add100e3b8d2fcdba7e8c8730e411093f314cb4b2bdda9b758505a626f8b3ab598

    Download Submit