Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4d00d5eb5c...c9.pdf

windows7-x64

1

4d00d5eb5c...c9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    09/01/2024, 01:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4d00d5eb5c763217c579b5f5c81522c9.pdf

  • Size

    83KB

  • MD5

    4d00d5eb5c763217c579b5f5c81522c9

  • SHA1

    e23c13db99ae43e053c3d706e0bdd8ed7e547620

  • SHA256

    f6414a4e0addadc6e389bec0063ba732398a910b9d034026730a6520630b1a26

  • SHA512

    93438084da104993e1c76242fa38c21600811b8c2bfb8416202352e7acfeda6d0ed8f3cb674bce9ae5d809b141b30b6df06ad528114840f3a96ddf8f048f6ed8

  • SSDEEP

    1536:oWj8eXChRIptbIU9NBRrEIJlBO7ZgOtfkpAYJn/s+QCkWkNpOPkIH2W6epoDlk:dQIyAVIU99BJlEtMpLBVbZPxHjpoq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4d00d5eb5c763217c579b5f5c81522c9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a3e80568eba64c8529904f0e9ba0a348

    SHA1

    638a7a8da43cd10e6948f3c488d3eb01c3c03f62

    SHA256

    93d5cbcbb34c3457a2e27908c335c0fb2aa1a7b35ee7146701bb09ddd6572608

    SHA512

    ffb0f266f94e60e06f36a3b0cb675a1cb518a776ae5f610841720b3bdf3dd870067d247eed17c658745f750361abad8feb04830cffd24bf9a827b79ce44aed9a

    Download Submit