Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

552d358cec...b4.pdf

windows7-x64

1

552d358cec...b4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 01:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    552d358ceca56964b8670b394ae718b4.pdf

  • Size

    99KB

  • MD5

    552d358ceca56964b8670b394ae718b4

  • SHA1

    e123e68c16ec5633b05e7d18890f3c0bcfd10af8

  • SHA256

    2e11671419ea049a37f1a4dfdfffa3affa88105976379cea35e92bc5ab8b14bf

  • SHA512

    858676673d0ae2891753d9e49964d51b3276607abddd9952e24c5cb89079817707bf3de1ddb7e448bec3fb3f49bec4f04073aee38a8874c814110d470c0b342a

  • SSDEEP

    3072:FSjOD2IMBA+nNkflNE9J58qnU/EhOtQvqLtx2vzy6:FSjODZYA/923c/EAub5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\552d358ceca56964b8670b394ae718b4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    47ff80959ad0cc083de1ce0cd964d6c7

    SHA1

    5e40ef3d761549f66f7db236ca168f6498e03360

    SHA256

    2c674402539752fdfa05ff6eaa4447b3847aeb7957d5cbadd66d29e50d633e37

    SHA512

    85aa11511e547095447410aca86ea6a135727eca7f462c9bd0d81b6df5b8e440a61cee61d9345e407523b19326bd3e7e3d6b934216e4345e0333b7871fadca1b

    Download Submit