Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/01/2024, 18:17

General

  • Target

    572908b7eb4c26dd48529853b16a2e83.pdf

  • Size

    89KB

  • MD5

    572908b7eb4c26dd48529853b16a2e83

  • SHA1

    a08e5c7bc7ea50f333b31330e409790658d3d44d

  • SHA256

    4ba6d6beba1154a2f147efffcdf99d359d2161f951d1f10e4c9cbc59ee168726

  • SHA512

    772862cc9b05c289a6490766109a9521dbe9bfbd50ee6f113bde2d710fa81d67e1ed7d2ddf1d4800f68e0dbb94318ae6bb6ded4050c32dc36c1899d183e262fd

  • SSDEEP

    1536:YjLfgmA4d2pofZphWgzSgJE6OfSjw6M+hvM/Kv1WxVMIg7tpbehWapOnzYJ:k3hIpovomJfOKU6M+QVjg7vbeinO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\572908b7eb4c26dd48529853b16a2e83.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    96ae08e165f5ee78f12882b4896f4e3d

    SHA1

    51956805f5f69364e9d1305a4ba18d06e46358f4

    SHA256

    ced0d85befbca51642478ff0e0772b76b0ccadd88ae439c68bdf0a6bf0f4c62f

    SHA512

    0241f3652674b598682536d53705945701693070593ebe59b0585026d5d00023a1fab101812707975947f2a4d2621b85d84925ce735a66b9c28f235a57475625