Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

44c83afcb0...a7.pdf

windows7-x64

1

44c83afcb0...a7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 00:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    44c83afcb0bf67f6fe31de91a13f47a7.pdf

  • Size

    89KB

  • MD5

    44c83afcb0bf67f6fe31de91a13f47a7

  • SHA1

    e725b859aa10d0112fddfe36829553b2ad82c3d2

  • SHA256

    a8fefbb37f732aea5ab8196924fae1f24775621b6d31ab49623191c86e93dccf

  • SHA512

    6a5d5070afef707c0efea9d7fe667647e7027756306a4f39f6e796c883484a732f52c6a308aa9d25a0a89eeff69f61d198c1e8c4c5de2515ffb176f4011ae0d6

  • SSDEEP

    1536:XHD3Mu8nwtn7r1BqT4WqgLIL2JWBB4g48Yj1WzYA0lg3WOpOwrBj6vDc9Z5:IuQwd3V2JE7MXlg0wrBj6bO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\44c83afcb0bf67f6fe31de91a13f47a7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    13e7760ef2474592fd48f2587a2878b6

    SHA1

    37c412b29d6212571a40bc4ab968166da71b9eb6

    SHA256

    f6b452ddc480c7fe24a4dfb43a1c85bc045a0cb29ae59db4b27126f4032f0ff2

    SHA512

    1f8817f30821ab1acc572f4390392268f3f5bc057f338dd6d11155e4a51f2288e0342a21effa5bdcd425f5f36e939df270b711d1822737eac3634218f942082b

    Download Submit