Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

52c0209da8...0a.pdf

windows7-x64

1

52c0209da8...0a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 06:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    52c0209da814e871197b6a67409a9b0a.pdf

  • Size

    45KB

  • MD5

    52c0209da814e871197b6a67409a9b0a

  • SHA1

    b6bce1c4f0815bc2e16f8370dcae59da69ee4fdb

  • SHA256

    5e46c3481bb87ebb0d4f5477ee72ffd3802bdaedefe8ee012546145d6d9bffc0

  • SHA512

    14856406f69beb3da0aa4cbfbdf02dab5592bd1e0bbf0036442b7bbfc73cf2780bc5362313ae755031766edfb8b31a76c879e51644a97c2d6ae3e8454eaee50f

  • SSDEEP

    768:RgGzpD5lTbppcu6/+gvmwhzuzXg6/qWQxwgWI3pCKT9tpX1nD:iGFFNt56/1vmBMW/NI3oYtpXdD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\52c0209da814e871197b6a67409a9b0a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    870cc17d51402c1917fae68e736a56a4

    SHA1

    9dbd71899f849ec202766906c037843d60f61399

    SHA256

    051b4f3ad42b8f653a327064a69bd8e0e806822b06287c66bd24d50b24b51f58

    SHA512

    3c3270fa48b9aee643e7178a050b45039ec0dfec0133ba1b8695fd3bb3eb33b3f1d4ff48964f8cb4e712e91a314e7d0b98ba8787a721b97f437a5b02f7aeabfe

    Download Submit