Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4c0d159c64...61.pdf

windows7-x64

1

4c0d159c64...61.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 17:34 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4c0d159c64d0d903018a5f11f23a5c61.pdf

  • Size

    35KB

  • MD5

    4c0d159c64d0d903018a5f11f23a5c61

  • SHA1

    6aeb2922c6944b7a8c6690db6b99e1fa312ffac9

  • SHA256

    00a562b87af021035a7cbb67b298a27264d7b6b273fbf845fa12203d90b61f6a

  • SHA512

    d900475554fa69996a5990555f99a09a850a6a9e37bcf10054af4f81f3cdcc23d92de7d4d49ea09bf501fdbc9c594817c0197c156fbcec2493737930197b5582

  • SSDEEP

    768:MXS6QtMysrIHyjz1FVVPuKEcIFQ6ZhlWqRNl4ANucQ:MXPnDIQxZKcIFzZhsqV4ANucQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4c0d159c64d0d903018a5f11f23a5c61.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2337ae8a8c134262a006ddc9d23517d8

    SHA1

    22bc5a549b455e469d899de69e9e31f62980a557

    SHA256

    3b9d8ec910853e8a4002ff7d29d3aa3b1987731d145bb9489b15722e642b47a0

    SHA512

    dfe42a2a6120dc5e916d7964e81b95039d729cb845c9367b068fda868544bc099577ec964c2df58e434c7b7f97c1978c480f616793b9cc27cadaabb43bb05276

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.