Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

63c6d2578b...33.pdf

windows7-x64

1

63c6d2578b...33.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17/01/2024, 22:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63c6d2578b7c7825fd6012476d04cf33.pdf

  • Size

    79KB

  • MD5

    63c6d2578b7c7825fd6012476d04cf33

  • SHA1

    5b7334670d8d05b46936b2cdf380dade088d0cd4

  • SHA256

    9dc55d80b059b355844f122cb6dbc7fe470f2dcbc580faa241d90303a88b7c49

  • SHA512

    3160f905b2f4c0097bcf8331ee08aebe92a21b907e856e481d74ca2dcad9f8f5fd271a5e888806e99b4fb5818adf0b21c04054697ce781d530154e63f0212332

  • SSDEEP

    1536:uVExS0Xz2/pvtdc/uOYt+gR01qIMcVujgWHpOvtKfT1p06WEkMp7MOWfhz:ExVdcmK1qIzK4v0pp0GlpQt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\63c6d2578b7c7825fd6012476d04cf33.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5361787f1c6bd3d4637841d47e9bee04

    SHA1

    4983070b786e4820d87794328765f5937c82840f

    SHA256

    c304bcdac24aff1a06cf0ab1c5b652b0fc1d36048298998db7eb893fbb00164f

    SHA512

    e7536c1868d579009b2afe58c57247967bd4ea09715bc1273ca4d6a6bc2ea8c94742c9f677082be23d7d57918bfde0209611781a9c8f854dfc276583090893aa

    Download Submit