Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 08:20

General

  • Target

    45bda32f6922dc243794a37cd85b5443.pdf

  • Size

    81KB

  • MD5

    45bda32f6922dc243794a37cd85b5443

  • SHA1

    1390c98835a73bc4289015fe89b3bc56562c43f3

  • SHA256

    b4def1f63140569a803adc2b9850df448cebe08d00f80a037364beb417f1f490

  • SHA512

    ae08d35139d6c1ce914213c4461d9d78c006f50d936f3e3831cf87a3d9b24dded0a3a0cf916db974f101cf4305b43606c4151218d050208e7f038bbfa0ac197f

  • SSDEEP

    1536:FLsZ5F0aiqtQcE38wAv6IySjmrF8Kx89py5kt+lqkRbnvlev9:+hi0QcIJr8Kx89pyKt+TnNS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\45bda32f6922dc243794a37cd85b5443.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    de504570cff69e5500b6f02223e969bc

    SHA1

    23154040d479ad6407c885c6bc4cc6b943a84551

    SHA256

    6778a1977a0ed931bc4c2c6cfc11908ca167fbe7eab4420c70d47f4aa0875cd8

    SHA512

    ad9fe2afdaddef29310a0d192234ebfee4595702efe42fcf254a6672155cf6731ecf33bd214d8e3eff406ce678ef400e075af6faa839ee8c567ee4ad6715afbb