Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 03:21

General

  • Target

    5a22fd8b530bd0de28e2f46087f549a4.pdf

  • Size

    86KB

  • MD5

    5a22fd8b530bd0de28e2f46087f549a4

  • SHA1

    9eb914ddb1278ca31027058c24b6759685697a8d

  • SHA256

    2a2529e624efe564f60002b426dea6fc7c9a34e2c0ed2d1adb226053f5cb13bb

  • SHA512

    45f7f837941f0cde0f53874da4073bb1d7754504d5f04f5431cb6c122f810578284c08534873a1111fc32a3861b4518e62b945dcd019efa7fae9e672f080a6b3

  • SSDEEP

    1536:ezKQY1L6EZzg8uAzwALzse6hjEWq/r17x79GUIcWapOtQHWPeY4sruBOE:aKJ7Zg8uAcA8e4Xu7aUetQuHlC7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5a22fd8b530bd0de28e2f46087f549a4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1848

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    263bc09d5ebfeb015b06bb4c7c9599ec

    SHA1

    75b3b52d8e593620d5d04910d3d3295e8d5abd6a

    SHA256

    fbac8b235791627c24c6a1978e729387cbfffae9ddd53df9b8a3afd8569dd6f5

    SHA512

    7d9fa473bdc885fabcf04aefc1c1a07edb742406f822529fab3b3f4d67fcceaae10e78af9cb9668e7cd0a3294bbeab3d5fd33eb6bfee4670d7eee74c8af78553