Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 06:30

General

  • Target

    52c985ccef4bd950b30f2c652bd28306.pdf

  • Size

    46KB

  • MD5

    52c985ccef4bd950b30f2c652bd28306

  • SHA1

    086db80b2c2d4a4a49b1ed2783d5dc4a702ab04e

  • SHA256

    5bff07f832a638fb45f1577ddef79cc30f26f3d291656a25bc7dce1c0fd4483c

  • SHA512

    b5dc13d983415ddbf1db0d499377b22ea4807ca4358cc5767851684cfdf9417f834c369c72dd69a1af2bec93259908e981f23b1da96332e7613f0d7631b6c8e8

  • SSDEEP

    768:gsz5LU30WHytn5WsNw9fnrmlU+iJCkahvoWQnI8Y3sN8I2N:gY40rPWsarmGkVoWQI8Yc+I2N

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\52c985ccef4bd950b30f2c652bd28306.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e4cad30738bcf6f101ac3d713d3da18a

    SHA1

    40a4c99129d0be1ac2ba1efbdeed7bc10eb86d8f

    SHA256

    d85147ac489220beb966e5e203c70f72b0f6f8028c9d0af9f255bdc8a8a3ba9d

    SHA512

    b1fc740658e696ddd68c54046c7b4bf5028ff60b6a267a3b59d70101af5ac96cb84ff0e5078a8f4b30ad96a735a2db115280dbcdc1bdb9a313625c79d312be65