Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 06:32

General

  • Target

    4ab11339f4ffed59da6c520597418c94.pdf

  • Size

    88KB

  • MD5

    4ab11339f4ffed59da6c520597418c94

  • SHA1

    646d3a7d4811b6d404f126b133b25d6e2d15c22e

  • SHA256

    d02a4ab71036b2ab92af479764c3a8346533b4e913efd6b0aa905eeb0b056e7a

  • SHA512

    e18bc19d4ada1af65dc3a9e21c3691aea4dfc64c11d666a3421f047874464b7429aa7d218f9ef933cdb30a2ad5edba2d84d8a6cd23d74e9630dc0fb1a1cf2839

  • SSDEEP

    1536:nrCw5+6P12W1k2pH8gbQwA04FmJ+wqAfOKiRm1NWBZ26wxn4CW6pOu2o9Uk23:2At11pl8gbVAkPzfO7mc0n4vu2oGt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4ab11339f4ffed59da6c520597418c94.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    9d40a15d346b6e72e851420e03f2dd8f

    SHA1

    9b98cb66604926d8e12773b0e36952c9c5533f6c

    SHA256

    7a4ac6a8927dad20ccf725ac08142e5eb578ec72f541e4f648221a658f6d1eb9

    SHA512

    ad358215e9670c0b6934e76dfa191edfcedd941cd7b459de4f5d0bd54c22470ea2315f7153f0fc0eb17ee757f66b1c6303f91a39ae81444793c043dee4cdf630