Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

591fc07f14...c8.pdf

windows7-x64

1

591fc07f14...c8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 15:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    591fc07f145341f931e24167d94cf4c8.pdf

  • Size

    85KB

  • MD5

    591fc07f145341f931e24167d94cf4c8

  • SHA1

    64e2aaea7ca4e14b65f70b85e8821c177f446b83

  • SHA256

    1c661d89b324053dc86961bb01097b13e3556817f0e9a6e10b83c252716237af

  • SHA512

    1b865f3522432eca61f1985a6f0cfb53ccea47d6b33683c59f6f38074b1b8d947d69bbc004c1abb925aecddf95b56ff44b68d067d80cff1bf90c4368f0f2a72e

  • SSDEEP

    1536:V/UTcst9a+K2pLdhyp6tBWrZ6sYvw/W0pYlEE5WHpOvTWjB7akzyFHjZf:NMcsna+DpLdIp6tBWl6sYvuW0pnivSBy

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\591fc07f145341f931e24167d94cf4c8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    26d6c1daf2b09f112138bfdf667318bb

    SHA1

    59747d76f261932515581f36472a248cd37cdcaf

    SHA256

    cacbc190d007b7ddc2d9a260813032e5176bde9bd0cee1f664a7d772d83e0f58

    SHA512

    9df2e5fde392fb3ac02f13e4faef0b369cdbee7f1f699936b19780207c5ca9d898a1921ce27c1c463ea77c3d6da7e63b8a22c3766fd241c5a6c89a184aea13cc

    Download Submit