Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

5af1398512...53.pdf

windows7-x64

1

5af1398512...53.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 09:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5af1398512f60f5c3cfbe73e476f0253.pdf

  • Size

    105KB

  • MD5

    5af1398512f60f5c3cfbe73e476f0253

  • SHA1

    823a618431f5347890ee68c4fb173ea852d3eab7

  • SHA256

    03400d873a280bc0b118b5a0b191fe160ea88f2e22e0bd14fe6ae2ae31fedec4

  • SHA512

    318be4d9a83a05cc50a40fd1043e445bf419d03288d01cbde78aa20fbbfa49eb270ad3c04b17556aa7fdc221da2b36ccd0a7561e93320f030913a6e8f10b8f80

  • SSDEEP

    3072:C4uoXOND3S2mE9nWV5K3TCEfr6bniKibLQ1F:C4uosD3vhWVMCsqgLq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5af1398512f60f5c3cfbe73e476f0253.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6f665fdf52fa5e414cfd41c2ce8774f0

    SHA1

    c079f6efa02b1a0107a15afff6cb112cb1c47e57

    SHA256

    4f4455b7b68ea601641f8f8f8192b4dfaf89480fd7444cdff106dce9b4bf0e94

    SHA512

    6e386928ca42a2561866adeb191ac14686acea12862a7b53fa929d5fd1dee6fd83660802e7cf54ce1dd91ef904271b2d9b05d67bcad69acc9cb1f8527c219438

    Download Submit