Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4fa16888d7...c0.pdf

windows7-x64

1

4fa16888d7...c0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 04:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4fa16888d7d1377596c617b5ca568ec0.pdf

  • Size

    35KB

  • MD5

    4fa16888d7d1377596c617b5ca568ec0

  • SHA1

    e5aa11ede7a0e7315bde22ba43369ba2a69437c3

  • SHA256

    cb3ae841660edf6054c205b347d040dd95721dce2392957c0d78d87b7355180e

  • SHA512

    54e7d5b2fce9e00b799cf5e7341b2310e195169d4ccbffa8bf5ca7c16f7b21dd7df2aa5bf7f176c5b3a99ceafc345ecac5b357740a78d4ae453d6ca7654ddd8c

  • SSDEEP

    768:BQMXD6+k9GlvQYLBR3rBPo5DGFzSD51V2DPvD5EoKO+AbRX+HbvC:BQM+0LBR7BPoJdD51APvD6ybRXcbvC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4fa16888d7d1377596c617b5ca568ec0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e85ec7cc0d292f9ac8018963f447fbd1

    SHA1

    4ca3ba4185904127e4ce6161f08848c02635e5d7

    SHA256

    01022c40dff6c8984a3283bdf74de6237a50c4d8a270e4d0a47e0f5e5d91357b

    SHA512

    3825aac310f023d008b9746cd9d4b9cb2b2a0135ac2896b266d0026a784f805b641aff1cf0eb3ef4f55339ccc169d0e6880ee414638e5c06c15515415965c7ff

    Download Submit