Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    01/01/2024, 21:24

General

  • Target

    3dec26761862dcff45f4fbf804a1f018.pdf

  • Size

    87KB

  • MD5

    3dec26761862dcff45f4fbf804a1f018

  • SHA1

    2e7e9b42c1b57f40c9d4f6d3c536f0a6ec363a36

  • SHA256

    d6e8950a3c7495e466b739abba3c67a9c6b8b4d23a3d23738a4fdbca1f012ba9

  • SHA512

    5e46049a68134491e5c0257da61d9adf292e61797a90bcc3ee9502bd211eaa3e0dcfc5d9938f0f300a622efbcbbb459dae1bf610434d1a54de409d7786e15e4c

  • SSDEEP

    1536:S8jN4hLRKk3UQxpjFltvq8huobH1bASsVcBhF8WkNpOPaWh/3vFQYoxQly:54hLRaEVvq8huWH1AVcrPXn6Yoxp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3dec26761862dcff45f4fbf804a1f018.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2024

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    eb191ba510548c3f997dcb9061dfcc3e

    SHA1

    84158bb2de0f4271580bdfcb2ea9c4020071afbd

    SHA256

    3a7530ba6f7f7496afca81da4b5d4dd85cdd8b253ddbbe10a3f33bb69b278759

    SHA512

    eac34e466936cb4dfe056fa75c65efa17bdddb423ae89fb4eaf9ea85c8b7de05bd0a859bf21c655c35cecfc2361f769c4b083f23bb2e2b261331517a8a3b8364