Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

5b1b0ea96d...80.pdf

windows7-x64

1

5b1b0ea96d...80.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 11:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    5b1b0ea96d4f82718c08dc8755306680.pdf

  • Size

    81KB

  • MD5

    5b1b0ea96d4f82718c08dc8755306680

  • SHA1

    28252435da551707d5b658155bb114a57ff3d6e2

  • SHA256

    081fbbbce19f2966ab6f76cad970431c89bb19a92a7f8adc380bfe58e15b6015

  • SHA512

    c210c946d3a1695d7ac16938cc0877e6d04b88100db707e7150a0a6b6639cd96e21bb2f2612b20876642bc27581b5aec89cf610293e01f2feeef3092075024ed

  • SSDEEP

    1536:ysOL9hFg4kv5Av9SxtyYiZ3X+kzFhcJMJQTOjZ76a70KauSWKXLTokVbzjqW8pOY:E3Yav9S+YiJX7FsgQTOjcyT5Q7TokVb2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5b1b0ea96d4f82718c08dc8755306680.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    09ab789cf36630b7dc0fbb8e8f792dde

    SHA1

    399af5df623503ee69617ff1d51aa7feac58a239

    SHA256

    8d5ffa2173a1acd206365e53b624240bd4c8101c453691640b511e941961bdee

    SHA512

    daed91035141d85c64726bbcf2f1afa86f1aefc592a931309c6e01a40f0d354375a92762648d56e09b12966ecf203aa27374ff7287adf541dfb34ac7cf76d77a

    Download Submit