Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

DELIV_2229343.pdf

windows7-x64

1

DELIV_2229343.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/01/2024, 23:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    DELIV_2229343.pdf

  • Size

    128KB

  • MD5

    bf74d57a1deeacba0ee7827952dc7866

  • SHA1

    a31c2412f89b71c1d72215281fc0a9067a6a7dc1

  • SHA256

    ac3535e7e72f62604d5b76267c7b64e73e6b63c61d1eb3c753233d5a75bc317c

  • SHA512

    5e31110f9ab08ea8a061540461d10e8b07ad335c07c7d165c79454ae4045c6f1373cf7d40e346b651ecfc7d5cea1d6179305fad3954faed4e74bdae9242cd598

  • SSDEEP

    1536:paXn6Y5qMqHF/0FSB5HB3L3hxlPN2Ubghm5AInyAmxhSV21rHrifFqXptR:AXnhUDF/4s5hV1MSXr8hnqt+pr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\DELIV_2229343.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7f88c265c5a332b4732c14d7ec651f4e

    SHA1

    10a0ae4a5ad0fc8c363ec6e5344a24584a15fc51

    SHA256

    88f261f1ea0231c842d3dc3707a80a98cb9283f468442fb7c9b24b1dc07163cb

    SHA512

    ececae98955713673b46c4458d4abf614fc43b976a9d1ee71d2c38fdf96ff8b72f507501f33f0ced8f27bf816e2cbe7a2fc04eddf14c22ed4d15fd78b68c0f22

    Download Submit