Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

Mischa_Har...wc.pdf

windows7-x64

1

Mischa_Har...wc.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    44s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/01/2024, 03:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Mischa_Harman_Video_gqicbv_ahqzqvwc.pdf

  • Size

    249KB

  • MD5

    c9e906e30bfa006f00ea3e352d8c403a

  • SHA1

    5956cc76b19468467e8a35433b0fd7065d70f952

  • SHA256

    c592de342f54c2bda16722d2e3e6d75e13466ade48e3a81c8ddc7e234dc488b4

  • SHA512

    53780bc228b7f13a13619b39449780cbec5fc6aa9002e7ec7ee5b332c2d6b7ca5c8f9eacc3306289be9f1a8e5fd0da2846208e390c803ef847aba2a5c50ec87b

  • SSDEEP

    6144:okxfQ2IC9GeA1pmhZBNcMXh3EUPVaJxXLNgeZyeq4j:okxfQ2IC9GeA/mhZAMXCUgJ/Zv9j

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Mischa_Harman_Video_gqicbv_ahqzqvwc.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ae8f114d79ef07084ec4a5a7c9c5cfad

    SHA1

    27910209676762e86918167d922f1a5ba5e07a4e

    SHA256

    646de975cdb75d5b010a2b9e648deb089164bc94167c9bddb0eabe524eea8e8f

    SHA512

    62330988b561fb30778640d2713a97f3b95e3ec31cb250fe508d790a661885e1c9e5265da0bd801bc16b1882fabf88a8b1cf2664fc1a0b7c226839a5faae3e1e

    Download Submit

  • memory/1772-0-0x0000000000D00000-0x0000000000D76000-memory.dmp

    Filesize

    472KB

    Download