Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 14:47

General

  • Target

    58fb4e84c5e4a4689ef87874de7a2049.pdf

  • Size

    51KB

  • MD5

    58fb4e84c5e4a4689ef87874de7a2049

  • SHA1

    71b9a72fe1af9762ee5966b4e1339b7b1027dedf

  • SHA256

    0ef56f80ca65cff901590989c28471ff0911ea18627f8774c0e07cb8d38bd7f0

  • SHA512

    42b60cff5a757d1a84e4a48d73c37d40100c22efdd67e17b4b4f2cefbd5ab1fa2c5615f3488378ed20dbf37fbc6e42a09df18827d717fef4de7fbded1750cd53

  • SSDEEP

    768:M0YbBKvq2qFxOZ4fXacTFWefi7t0AOkZdsI8uWkOp+by6oywN+8+8PIwDs:M35CZ4Scp67t/2JuWkWUy6oL+83PIwDs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\58fb4e84c5e4a4689ef87874de7a2049.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    410d4b1ebc3244634bf185e9557e406d

    SHA1

    dc1a02732a699d254a9213bf2c14a7d90ca35d52

    SHA256

    d90049825678aa32068194d0f7d5fe3c0b7af05de605fd4b30eda121191e49a5

    SHA512

    e63abad67ff1ec29f8bd6b27f3a29b312713c6fb3b7cef9b382a965ca53d607a94a472e1287516ae753c6c725947ac59b5ccc1fd4fc863ae6d5ae529984370cb