Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

5abf150359...c9.pdf

windows7-x64

1

5abf150359...c9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 08:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5abf15035927f0817d11e6bd2dd517c9.pdf

  • Size

    83KB

  • MD5

    5abf15035927f0817d11e6bd2dd517c9

  • SHA1

    df4e98f90b79bad775190fb6fc7ae6ad92d0db64

  • SHA256

    c548d58fb237e05ff56940190efc31fbeb4a92b4df08a39f08411adfcdc6bd36

  • SHA512

    032f99e51efc450557dffd36e1727d9c264cc5dc36562b4df6573f318099864b409338bedfd3d50a914065d480b55ecd96684bd4cd6cb2c50eee655b10135c82

  • SSDEEP

    1536:/vK+5dtWmNRnEmzUSUKTLcsgK8YTt9bH9XCDyjOxM6oF0EuG//BWjKbzQKo:a83NREmwSUKTLcavh9bH9XwySaV7uG/w

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5abf15035927f0817d11e6bd2dd517c9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2156

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    39396c6cea5e533d4e70e6d863672834

    SHA1

    3bc72fb749e0c498b41d3f03787d44af1ccbc36c

    SHA256

    30c47d52145086ae6d53a89ea51db447a0343e473c8867790d26d1ecd4779f3c

    SHA512

    dcc565e1eeacd4d96e144d5076590bef054f2ede99f0b30e5b7d8ea9d86f91621f4eab6bb46299069c05374eb7e93c0a3f08ff17ed7dec8f5fbd02a63385e694

    Download Submit