Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

562fb5bed5...c2.pdf

windows7-x64

1

562fb5bed5...c2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 10:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    562fb5bed5eff000d2d91b1b0f5d39c2.pdf

  • Size

    78KB

  • MD5

    562fb5bed5eff000d2d91b1b0f5d39c2

  • SHA1

    764b9a8cc37c2cfa94ca7000f552184c741fe0d1

  • SHA256

    15ec8a39d7721caaffb9ca5d5e0066d1e7da143e2a76d6acc45bb88de9336e94

  • SHA512

    68633097f2d634d60646349b1fb8323f3d3fb13eaf5a6dd83d9f2b28820f6bf9e4c258dc16128c2cd1dc353a1cf1e5b95a950259902c334804555f365f7ff4aa

  • SSDEEP

    1536:M2l/M3zyKoN2Hi47qJmFkgyqlkEcvsWhtYEOUfH/WWnJ/oIwlhXM/jKZWbpONvuL:9/UzyfwCgLFEqWpvzhWEOyH7J/MBOjKM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\562fb5bed5eff000d2d91b1b0f5d39c2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9176ec8e82c7725c84f0f2088d67b2e6

    SHA1

    45da900bb9b13239e7ae82d7d7ac83e42291df13

    SHA256

    8246d949d07dc1b5dfa94b163456d2bce59ba782eb46ffd25e2e4dfd558b9166

    SHA512

    ed298bb74f4732ef44828fec2d4cd82aaf20e4e54842897d6330a41b05149b5963d5a7e306cb5c6a8e3aca1d1925bb2d2bfe68147a81eb37c274c32455a7213d

    Download Submit