Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 07:14

General

  • Target

    584e4dda2778eea3762dcbd856491293.pdf

  • Size

    45KB

  • MD5

    584e4dda2778eea3762dcbd856491293

  • SHA1

    ab1f30e181e071d1ae2f62f1f61a8fee320a4e7f

  • SHA256

    67809d3ecf93199b12e35c8f809e7469979439b42b076f19e931cddc562440f7

  • SHA512

    fa020acc7f790bb92ea6b6a68849b15605c2967b35396fa196dcbb54cb06195c84a4c0a8b3710c20fd941cedb8c93efa4feea6af048c7f689374974c435fc4a7

  • SSDEEP

    768:JQ8BVKAz4MO+NCXmzqm8rkNU43j2B8a/HO/dJxIsF139JaIXbMGy1W:JXKAzJVgVm8d43jzaQxJF1399o1W

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\584e4dda2778eea3762dcbd856491293.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ab4f0526651b48c1476c4391489e282e

    SHA1

    ace09268aa9c08706f89fff6b87fbd4b9a9780d7

    SHA256

    67623fa8072cb671747bea97cc09ee1c0ef815cc2f86426098ec67792824d14b

    SHA512

    42d2e9b12798f25a1beae021de0d764758abd5f6a67d7923ffeec0be97e2b75a19122073060397bb2be7bf53c1f609610083eed18439e423d92229c89fcd39eb