Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    10/01/2024, 19:51

General

  • Target

    5174a89ef9a8b896fd0054a8dd17b8ba.pdf

  • Size

    89KB

  • MD5

    5174a89ef9a8b896fd0054a8dd17b8ba

  • SHA1

    4deeb3e68dbd5e6e55c1fba7c321773ee1f1b537

  • SHA256

    9ad8569f25db0a16b2e6a4dd506ef06a36e64b29aa91ef6f42d0392a37de4f6d

  • SHA512

    9ae18d9d4355282fc6422d4f5a40bed546fabc12f980c9782794947dcb1f9b01a596dc24915c10f0632a7141fa951b270e70135f01dba7a807ef1cab39d1c4fc

  • SSDEEP

    1536:CVat7rTI1YLpv7nU3fL1Nzv170beeMEN+WilmfU6PovNWUyhdK3ZOWOpOwrVHZkb:8aZVxG170beeeWiQAydOZjwrV5kb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5174a89ef9a8b896fd0054a8dd17b8ba.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    fc0de65c2aa752b0cc7d0216bd8b5642

    SHA1

    5fbd79ed07803e531f7483d81268ea0da088c72b

    SHA256

    d65c3b1eba4f6d056c6debf0ceffde4fcf9d2a817b1cf7a22ef39926541a31ce

    SHA512

    0d48c15dfc9406565ea3e55acdad57ff841fee971ab7a29bb859e49f3e42db740091ec92b732c15f4cf70e7e99e6548201241ab4c1d45c826d23a9c43c25a420