Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

463b478959...c3.pdf

windows7-x64

1

463b478959...c3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    463b47895951fb5db897bffcd41b54c3.pdf

  • Size

    86KB

  • MD5

    463b47895951fb5db897bffcd41b54c3

  • SHA1

    834d58f2471ec0e706e6615eee837750b0626358

  • SHA256

    fe016f831db53b5523e193bd488527995e25bf58145a9d730ac36374ac4394bf

  • SHA512

    592adf56d61a5638c0a5ac742c34284b284f0fe3113ec283c213e352ccb2fc99d07e0e9e870cce56cad45198e6647fface8c15577aa5192a59a4e2d02ce47fa1

  • SSDEEP

    1536:Qsf8OleEXZ1EQI9DiidVVlreDmo+JXaFMPVU3qrhs5lo0oWK5Y02YW8pO7S+r:ZfNHp1EYcVgCo+JscVU3q67l02D77

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\463b47895951fb5db897bffcd41b54c3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6fb6dc5de0246ceeb5f9ce8b4b6ea1d8

    SHA1

    15b148c739804953cd4c0fa01a653d6fe78514c6

    SHA256

    e129323e3c2acfab51e36573fb2b84939ff8c98d92f7f15201fb714d3edd83d6

    SHA512

    4ec8954d95b5c89f2d0c5a18aacc8760f353f53d6dce0f039a674262299641b0f1d75d6c4156d91464aa5a6b1a67ffa5157464609d87046b60f4b40a9d6cc16d

    Download Submit