Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 20:44

General

  • Target

    4c6a230d25ffa848beec70fae8aa8849.pdf

  • Size

    82KB

  • MD5

    4c6a230d25ffa848beec70fae8aa8849

  • SHA1

    223b1ff46b4dfd1cef4ffffbc026b43ceca943a8

  • SHA256

    03de0d5f532da2726b2d44a7b67faba980b5bfe459c0a5b12749f1e7bbb9ec96

  • SHA512

    587acd570a8832b53b093a01f1b54437ade3de1311516d111392fb7380c4feef3fd62b5b6198c59b6c9f308dc1087ed1b62fc9a65878acf84b02e81c47b743b4

  • SSDEEP

    1536:2uWO4K35oZMQbj3lyRBnolbQpAU17ePvs2nFWYpO2+WfEx54VrwluzLIlT:byK35o+2j3lyR50QplFePvs92hEEVrw1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4c6a230d25ffa848beec70fae8aa8849.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2760

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    05b54647d6fe1966d2f31db91fedeaed

    SHA1

    07b8df2802cc4d98015294bd09b4161e698a9ed0

    SHA256

    20fd9d57c8ae3e8d27941a5f0d5a36a42bf90e7f57a3498332bb5f7037202652

    SHA512

    b75791920a17a027bc47b8860e5d67c7aa9dabf918f9f20dad3e6fabbaf947400124001c67638ca34889e701abd25a531396fc2547a3052318e9fcf1023ea801