Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    02/01/2024, 16:54

General

  • Target

    3e82e549f665a077ec60b237ecef9e76.pdf

  • Size

    35KB

  • MD5

    3e82e549f665a077ec60b237ecef9e76

  • SHA1

    c8ec38b13b9daab908cb9983ccb8df894100fb17

  • SHA256

    edcbe78fc657d4fdf827ee5ecd9fbdaae61d5ca7ac6093abd35d384178170733

  • SHA512

    e11244aa92726961935ec18e98d30ec74c17418bbab8b29ceea4b51ced46bb54a19e198aee5a2b89ca8784d252f70412d313d72c879e3c251c8ca637b98b4565

  • SSDEEP

    768:lfL2q7/xUjTqmDECq5bUF70ujzBxVt1qvqiC4spIbDpF/SKKZHWHaNdiO+GB22:lfL2qrxYTqmDECYbUF706zBxVt1ZpaVI

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3e82e549f665a077ec60b237ecef9e76.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6641c4a9becc13c6452f66a806a02bec

    SHA1

    ea05a19986bebe8d882184e06644efef525886f3

    SHA256

    64af62706ab44ec456eaf14a3572f04204b7a3c3cb9d8316a28d84f09eae9a7e

    SHA512

    8e4b0b219c7d8c95ae68dc7fd72853bd0a7e237428f8bd907c73777be9c07d8e34c7d1e2d35ebd67ce3ccee6a49c349581d84bfecdf5f13ac5875e1bde083192