Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

584fbfc927...d6.pdf

windows7-x64

1

584fbfc927...d6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 07:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    584fbfc927ca23512bef33e07a0297d6.pdf

  • Size

    43KB

  • MD5

    584fbfc927ca23512bef33e07a0297d6

  • SHA1

    1cdf04e499fe18d7effdb0cc776d7b01d00edee3

  • SHA256

    4476ba80a66389d84900895d6ed25c3cce0944eb526e28c0b160b9d23520ddae

  • SHA512

    03885b11514c9c3ffd5239a55110fd384f6835bfcb7526cbce6e9f3055a1af52bc702a0a163da05cb3fbe97a6dff31960f3f201626537f6e2bae4b78a31c2cf0

  • SSDEEP

    768:AXhOjBs+fsf+tKB7MK6PiDX86lmo/YzSFxZU8+MmJd+fDEC+StIVJAQ0:COlNfWFSoSkc8+MmJd+IuIV+Q0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\584fbfc927ca23512bef33e07a0297d6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    55eda7204b340483e8785aca0fcec496

    SHA1

    77aae60fd36fb92fdbfc6183f2fbe139b7493b41

    SHA256

    e1f56c833f8ad833e7d2e2160d597dd9e221e4797675faa20c3267478361d889

    SHA512

    bcb7a2bb3958dbb0448c959e57fedfaa7ac6d72836950714a7b327f394b827d1c9ccf84d2fe74ba736a1cb7c7d42f01ef5dfc27e862c5d28d8d1f38b26a6d860

    Download Submit