Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

UniDistanc...IA.pdf

windows7-x64

1

UniDistanc...IA.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 12:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    UniDistance_serie-de-webinaires_IA.pdf

  • Size

    524KB

  • MD5

    c758c1033fa8901b3ec298a184d2f225

  • SHA1

    c17a50fde36ff650ea00963799d9b715243e02ba

  • SHA256

    69c1679e5b330b2b90e23ddd878fae8125a2a374808cd0b2ea1a4788482fd753

  • SHA512

    df310d86be809c4693b86933b9112dd53f0e9d0b206437727ae936e29f974ed8d1adfdee5a1f8bf13fdfcad07249c21e0751925eb9129afe231f1b0758684f43

  • SSDEEP

    12288:VWfdqVzjf7u4i67R3Pj/LzZ5ExnWvuanv6F:VWcjCwxjJ5EdWmo6F

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\UniDistance_serie-de-webinaires_IA.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2788

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a097dd1860c1b9b9d1610ca7550f43f3

    SHA1

    c567ad33ab2f6ff3b4957ab86ee7ce6dd5da39fb

    SHA256

    2346ad80b69a0fa78c2fb09078bf86e6c43e4a990c63cdae985384c121b065a7

    SHA512

    8c7cad87f61f3956b6ac0643cf6b4382d485c4e5608a00470e2f04780bbbb1c0a31d4d6f5b5d7682d6032feb3b844030b3716be3d2051678a85cadb7bd110a6d

    Download Submit