Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

570cc235de...11.pdf

windows7-x64

1

570cc235de...11.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 17:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    570cc235de5e1e5706a9ea6bec4d9211.pdf

  • Size

    92KB

  • MD5

    570cc235de5e1e5706a9ea6bec4d9211

  • SHA1

    2692ed96e9a031fe9442cfb7228e708197031dd4

  • SHA256

    fd2815dddedc1f84593c3e25940c180bdafdee9ced61e6e4fa017c9a216e2a97

  • SHA512

    c80100ce34c2dc84bf3de646e8956dc884365f23a63ebf5855895107159e8290d3413af2eafa3027a6349f59cc1f4e224b9a8da0f9e65a3c407c51a7ce655df8

  • SSDEEP

    1536:2VVz1mu3/+qzitgcsSRXgrSAGbqIWq+m2g+tv8SVzVzL/JpwWjpSwm5kWOpOZFAS:GzRPfzit1QeDbqGNSVJzr/pqRZezil5p

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\570cc235de5e1e5706a9ea6bec4d9211.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    49444124a1f95a3dcd5e1ba6ed88a902

    SHA1

    f4812e47c6032205e53a958ef490488ee38392d6

    SHA256

    c1b08cafa6456115584bd0fe9467dde9af07b47ca0b62707ce560b96a2d0a090

    SHA512

    565577fb089daec33feec9c8271dade3310ae77a811fac83f7a7d7c094360690c0755274f3b2e4591d8840d3550e04dce6ec68e8214da210e7c45d6400453804

    Download Submit