Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 22:17

General

  • Target

    54ba7a788821fb0e1a8c2cccd0e03f8e.pdf

  • Size

    87KB

  • MD5

    54ba7a788821fb0e1a8c2cccd0e03f8e

  • SHA1

    4bff3fa7799c923f662ec826f6f52207a558a492

  • SHA256

    411b18a381fea0bf40baed96245ca7760eaa6a38a97fdc028f50ef1f82ed8f1d

  • SHA512

    81de61aaf5e64aec5b6ba6e48ffb4a25b8f5ab570a9cf51d04ddea17fa782e31347136d37c28fa7b641b4f3b7a20e5516a42630928e71644bbdda1c8f868096c

  • SSDEEP

    1536:KK8pFp4AClWk3AI9PednaY3ar+R3m8T4QcQWLNh5aheu0ZBw9ILWQpOCP7hrOE4Z:D8pn4VWCEaYBR3m87Y/K0ZMI2CP79OES

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\54ba7a788821fb0e1a8c2cccd0e03f8e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2508

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    165e167e3d7624a624dcdcf8415f4180

    SHA1

    caa0321abe8b4bef468a70299dec3de3ff909997

    SHA256

    9950524af575e0e869f42cfe7461c3685c6106ed9789793e6646ca1695454533

    SHA512

    00ad62d39beb36b2cad49aaf59f08436e03bacf3187c4474a93d0f40a143303f4ebc3659528d7f67ab551cd1df89734cfd9843b9e21372ffc44dc5609f1c5c84