Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 01:43

General

  • Target

    52331b48b7259a68b79cc544fce10f73.pdf

  • Size

    82KB

  • MD5

    52331b48b7259a68b79cc544fce10f73

  • SHA1

    dcfc518e875d93c01b34530f19a570bd393b6c66

  • SHA256

    ac19e03994f42c5760841c97f0173dd5fa1abdad21b3d2d23e4458c527ca862f

  • SHA512

    638c5a935886d701e317979f3c60fc3a618f52a8f20b1287af0df0249947ff6fbffd8f42cd183a2b90e0ea76c70b578a98fc0bcd6ec72fa2a5b202fbd557b06b

  • SSDEEP

    1536:UbllouRTmRFVHMrQBzdUfZvix2rQhlzqLXOiO3RUoXb/azyoocTK8xXWGpOK1tfu:EHTmFHtz2VYQEqTZiVbizbNx4K1tfKI2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\52331b48b7259a68b79cc544fce10f73.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:356

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    45dc96c69d4f405a28e4bbfbe26453a8

    SHA1

    452d553a949fae2023f67410414dacf482c4b04d

    SHA256

    52036e8813cfda5a0b41121fe8aa02d797dd7b757a6a62e0735e02910e556e9f

    SHA512

    3d7767cdbc515f28a78b3d0b759c84189bdded9cc6a83fe9801c772b14db8efc800fb8e7a5936e0047d2c83c8bc64b1c7dafb0689a3ecb6f1dbc420ba918880c