Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

43e30fd96a...47.pdf

windows7-x64

1

43e30fd96a...47.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05/01/2024, 14:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    43e30fd96aa35c31bc6966175a36c147.pdf

  • Size

    35KB

  • MD5

    43e30fd96aa35c31bc6966175a36c147

  • SHA1

    99180f68371df50e3e66b95e38e218a8a91ba2d6

  • SHA256

    58beb0c927327bb847d92994e3eb1d47bf0644a0bb58f6ad8570a7c3b1372cbb

  • SHA512

    b05e1d71871750f53128b901da7234760049d11643d5d43b100ac3565f00b3ac7941fd41c96ee607fb0f45378fb9638174c3bd6cbca80541e9c5e10ccda2ae6b

  • SSDEEP

    768:7hpDlcUNDO+r1f3UYYiGIx0mZ7FtwWOiAPMYzMXjmWwLaeWE/f4of:lncsDjr1jjSmZJlvAEYajmWw2U34of

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\43e30fd96aa35c31bc6966175a36c147.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    de2a5e0dae9ad4513cbabe39159514d9

    SHA1

    abb8e4164048edcfa40742a68c922a905874afcc

    SHA256

    cd5190cb4ed60744339406a565e07b13c5c818e7ad7c6c8f311adc099d0d1d41

    SHA512

    671554f9d3232dfdac4f6c7e3253edd01e0b12429a014f66777ce60d7aaeebee972ee3c6947552f5e407727e0c5cf53ebe1023fb8c63e406259aa266ac610b96

    Download Submit