Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4e576e5f96...77.pdf

windows7-x64

1

4e576e5f96...77.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    09/01/2024, 12:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4e576e5f96f57d26a50da0936f209b77.pdf

  • Size

    80KB

  • MD5

    4e576e5f96f57d26a50da0936f209b77

  • SHA1

    e94f86eb1c08067e46c58c183c5366919f120701

  • SHA256

    98c241704c00d013ca2fa6be8d1a7527b84ea0abc8326546c550a55b33341edb

  • SHA512

    0c0d4a10d6581fb89c71066cd58d25c910bdf042d13ed20710ac64bbfa8bee5d194f8dff174ae377c14faf2146deb05f7004a71cf264426877d63369e726ab4c

  • SSDEEP

    1536:UGeeUc7W4+BabY4xpGp4hToxNw/HWYpO2M0vDWMyMujxngk:heJoz+BabTGp4hq+/G2HvpJsxj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4e576e5f96f57d26a50da0936f209b77.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2800

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7632f95a7c497af4a01a50315b51f953

    SHA1

    41826e8fd1e1394ce7e927eada6be656ecc13b98

    SHA256

    4b5e0ec967f9fdb38a1d740889c9016aaafd8332676eb49eb95a3aef5085c65f

    SHA512

    4be450b50385129bf885d3f330b3072b9e4b62f765657a3a1b5082b27ff1dd9c0cbb0f532ec17e6dd048fc01ec8163c9d70c333de17acc3613b6e23abf0ad0b6

    Download Submit