Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4b39456351...de.pdf

windows7-x64

1

4b39456351...de.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 10:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4b39456351293443aabd39b3d98a7ede.pdf

  • Size

    86KB

  • MD5

    4b39456351293443aabd39b3d98a7ede

  • SHA1

    5b89d5f1adf61fab397ca0331a7c7ab7a76d6245

  • SHA256

    777e79757580ea297f01d13df48a70e38ce9f27b518a8f91d168466fd7eae816

  • SHA512

    a92860f400277dec6fbb2254fa2a4380f9c4114da455cca2af669bd18f130f2f5ffb4334e577d2dbc9758cb71c2123292c037ef3cc265b3ac76a9e314e8b1737

  • SSDEEP

    1536:ksIKqzcHEtyfJquThzEBCujwc/eP0y/rweMD0GWypOlL4tkUWbLnXt7f4UxBpNG:qKttAyy9wc/4rIwnlL4tkfLdhBK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4b39456351293443aabd39b3d98a7ede.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2748

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d6efedb8971dc089f13c5117575687d4

    SHA1

    6acede7a3c15d4189a388a77114fe49e862c2577

    SHA256

    9db0c1371cce5ba9dc84d5e525e572d432894ae5c1d433a98830c7e812e96289

    SHA512

    ef412743c94cc3c48ef4d30cfdb2f58f577f6060d03fb6b37e6dd1dc1a669117dc6a68ebc430adcf8525c4e1baccdeaa5ecfb5a95213936d9e352daebb6e56bc

    Download Submit