Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4798b8bbb1...0b.pdf

windows7-x64

1

4798b8bbb1...0b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    202s
  • max time network
    33s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    07/01/2024, 00:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4798b8bbb14bd1f27cd613ab8865270b.pdf

  • Size

    35KB

  • MD5

    4798b8bbb14bd1f27cd613ab8865270b

  • SHA1

    5421216dd89edc20dc52bf19c55fdb6850ba6188

  • SHA256

    a16cfe54bbfc47281c6d693834806ea964d7a86e602f6737f4b807c959be6e11

  • SHA512

    bd9a694b2cb6aeb914a363fc9b71148cd9f4a5e0ce326d64b26eb92a8cf76526bb39b25d4420fb64bf2ebe3f6ceb5ff4a73ff51fc707bd050524b07409073d4a

  • SSDEEP

    768:jEOcvD85sE89/WFVuXcuQ7HeFV8tELiaMeQjvO:jbUD8Lq/AkcR7HeGRvO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4798b8bbb14bd1f27cd613ab8865270b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    85ee8c5bdb2c8042b19869577b025417

    SHA1

    fcb609d98ae67905c325b3ebc72c17ca46e2778e

    SHA256

    a50f51f514364ea0370bb82ef45a9e87efdf114e3f91b0ecdc3497b9e9575da4

    SHA512

    8121d8e4c50bf05a6f33510588d83d4812a20490276fe66b7e8aef66e4636e46c971755d5af5d2f567ec234d1c39efa00eb1020e7a359edacd48c5955f3c5a43

    Download Submit