Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4e0e0d24fb...4f.pdf

windows7-x64

1

4e0e0d24fb...4f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    09/01/2024, 10:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4e0e0d24fb863d5f4907471b2c348f4f.pdf

  • Size

    101KB

  • MD5

    4e0e0d24fb863d5f4907471b2c348f4f

  • SHA1

    adf0b012f8060b77217ec56abedb6d25e5f63bb8

  • SHA256

    83f80b55bf5b50f7aea35303f5d1af5e3baab1b5f866befab56155ed850580d5

  • SHA512

    a7a43cbd650594469f49b9de1fa619005f3554427498da6d57e6d715c8013828a35bb54fa6b521eb7a29f2773cc660c91c513e74b84233ce6700b13196ebb2a0

  • SSDEEP

    3072:f/88UPJCEz6XAe8kgZi+tbjUFF9EZ7U+l+xOpnkg:fxEeQ1kMi+tnIXqp1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4e0e0d24fb863d5f4907471b2c348f4f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b820a8506277677d18158e0d9f49c158

    SHA1

    05c01fc13d155f0d5359ca883a8b42029d3acc26

    SHA256

    48ce0c7acddfc5464ab74214c50b27fcb8c30e7aa06f5cd5dfbcc44ec5946901

    SHA512

    ba4ec6f1af69d111803dfa8229dfbc0cd54f9a51bbdb8e6a42f096c8c2655e7ca5324f2c78d23fd4afc9fa733c7101ea1579ae34fbc75e921690f64e714cddf7

    Download Submit