Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

55b49253ac...9a.pdf

windows7-x64

1

55b49253ac...9a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    148s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 06:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    55b49253ac96b9bf2d2553e6097a289a.pdf

  • Size

    88KB

  • MD5

    55b49253ac96b9bf2d2553e6097a289a

  • SHA1

    3f1854d831c3c37760add1a1f61d7bff96891661

  • SHA256

    580916ebe1e22789779562e01efa42a6d921b065e9b661521f19ad42988304af

  • SHA512

    e28573c7ded61a47a12550eacd9f7bddf37f3464d8195d43a2dfbfca76c19a9138d04feb2584eb9a69cff467aa6a3e49e3a7a8073cd9ed018d38a0de1d54ffb2

  • SSDEEP

    1536:1mXr+uRiIWbgxowm+UWIOK5q92Bx53NT/yoYWSxGu6E7025sWapOtQWn2C9h:uf8IUgbzXK5qovlaoSbb5dtQg2s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\55b49253ac96b9bf2d2553e6097a289a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1772

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ecf4af285fbec39c76e95a087afae6db

    SHA1

    3f0055fb9215f5d5baf5c6076a642af9b25d51fd

    SHA256

    164e6590191ec8f5351ec6a606e3cfc77990fd00cf54739a18f16a6f1e55c4a5

    SHA512

    eaed72cfbdfec4e3c7b486c39e805f2147f7147ee2f0c3c81fd1e20c79cb5710d80cda5c423067a87fe09e6aab8a1ed75333e27572ecb6f1c3e6e0fca286911b

    Download Submit