Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

5649afe0cf...2a.pdf

windows7-x64

1

5649afe0cf...2a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 11:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5649afe0cfbfb3d885aa328e2ba3242a.pdf

  • Size

    81KB

  • MD5

    5649afe0cfbfb3d885aa328e2ba3242a

  • SHA1

    cf27f52848a3febb6e15758abf23f3f10b02243d

  • SHA256

    fdb457d514e22b43a71dc6a540561cbee6bf4e6f6b4889e6fb8f7006ad4c4002

  • SHA512

    7668f59fb43de99f7562a368f13dadb5d399d322e7abd2bb16cce3f7033b793b0acc6127814e2336939ac9bc7a7fd70251168aa3367e036ac0941c31ded00fbd

  • SSDEEP

    1536:AwwAc1XrB8AwkULFADVhdXwJR9dW63Zp9K98XNEWCpOVi8qNoIKWLROXnZJt:+wAb2e/6LdX3ZpDXNNVi1oIch

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5649afe0cfbfb3d885aa328e2ba3242a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4c4abbdd6095876cb85a7c08d267abaa

    SHA1

    a59b2b1a6c2346d352faf2605c46bd602ca843be

    SHA256

    a87f2cf41b2d41294bdcd4fb8386e29953660a3763168052a5156e54e626c036

    SHA512

    393a707d8243aa1da3b446dba333fd4553ebf26b24d0f72466a2118e22697856bb94a2d6bc61ea60ef8c8de92a41a3fa3eff612a2645d2680b41df43f8a1a1e5

    Download Submit