Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

449f378078...7d.pdf

windows7-x64

1

449f378078...7d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    128s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05/01/2024, 22:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    449f378078a044a5368fbaccf8b1517d.pdf

  • Size

    34KB

  • MD5

    449f378078a044a5368fbaccf8b1517d

  • SHA1

    6b910d3b8c23018bae5148c67648d43e92d3ff85

  • SHA256

    6e9fa594a609d7d00740df508cabb32e73f3a2c0e409b34707f48985f06d1aab

  • SHA512

    a73fc992b3d17e7a992d09bd71b729a700420b3df0fb214cef9c51e7e6746d0c503cb5313164caab1671a0acf7d76d00f520d40d12d05d06d803735cebc1b08c

  • SSDEEP

    768:t/LKqm+olTs3vw65lBQamaG97BnbYndRxVtQu9uolhUcCZ:19mZlmt5TBma87NbMd7FuavCZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\449f378078a044a5368fbaccf8b1517d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    306ef5a9ca33e922f2e915a630e8d2c8

    SHA1

    29dbf3ef3624695c816a1aa29d10eb83ce5c5254

    SHA256

    86aec85973bcdbdc0373b76a3611b7b0e7aefbcf5065712fe3377820d027e332

    SHA512

    8ef6231571aa7e31dd04406856476432e7ff8c26a3b1cd9861da09869fec41f3690232eda13c2a3912552b956aa3c69a3ac935c896cba82cbabeab09b010442d

    Download Submit