Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 02:29

General

  • Target

    5a0a979caff02a3d3205faa3a69fa2a0.pdf

  • Size

    80KB

  • MD5

    5a0a979caff02a3d3205faa3a69fa2a0

  • SHA1

    12b43813310580b4f78adfb043c40c50bf7d1a50

  • SHA256

    7ba3b600f3ed1c3f17bb86a6a4e1e80d4560ca6e44ec93acd9c13819e20fa254

  • SHA512

    d67d1752a707f8085afd25d20620edc7a816ec88f605cbcd3dfdcad30a7f132c503723db7f0fa222ceb7e0a940fa59e6affd929fdbdf34fff3acbecc2ce39520

  • SSDEEP

    1536:vdDgLMp9bJmn0C5LBqu1js67O+DCM1BO31M+BnNDDu0pRWHRwIkfWGpOy7776RAX:pgslJmnHocjsaTD4O+BnND5pUwIkgy7L

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a0a979caff02a3d3205faa3a69fa2a0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    93f81184609ec8182952bd0583b97c73

    SHA1

    c2b3c17f70e0b309b5ce7491d363c9e79ba73cd4

    SHA256

    8fe881153eff6331197d5a3cf2b535c52cc6924b133c4d2101d8d8f19bf1246f

    SHA512

    22636a79122b19b660d595d10eb7c04336abd90ef9a1188a3d875df9fe91543b8401836af6be6140767da0bf13018e80262d48bd114c4400c801a94135bb7907