Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 17:34

General

  • Target

    4c0d159c64d0d903018a5f11f23a5c61.pdf

  • Size

    35KB

  • MD5

    4c0d159c64d0d903018a5f11f23a5c61

  • SHA1

    6aeb2922c6944b7a8c6690db6b99e1fa312ffac9

  • SHA256

    00a562b87af021035a7cbb67b298a27264d7b6b273fbf845fa12203d90b61f6a

  • SHA512

    d900475554fa69996a5990555f99a09a850a6a9e37bcf10054af4f81f3cdcc23d92de7d4d49ea09bf501fdbc9c594817c0197c156fbcec2493737930197b5582

  • SSDEEP

    768:MXS6QtMysrIHyjz1FVVPuKEcIFQ6ZhlWqRNl4ANucQ:MXPnDIQxZKcIFzZhsqV4ANucQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4c0d159c64d0d903018a5f11f23a5c61.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2337ae8a8c134262a006ddc9d23517d8

    SHA1

    22bc5a549b455e469d899de69e9e31f62980a557

    SHA256

    3b9d8ec910853e8a4002ff7d29d3aa3b1987731d145bb9489b15722e642b47a0

    SHA512

    dfe42a2a6120dc5e916d7964e81b95039d729cb845c9367b068fda868544bc099577ec964c2df58e434c7b7f97c1978c480f616793b9cc27cadaabb43bb05276