Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

6391e3f0c0...9b.pdf

windows7-x64

1

6391e3f0c0...9b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    17/01/2024, 20:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6391e3f0c00f50e55d8587f6b817159b.pdf

  • Size

    81KB

  • MD5

    6391e3f0c00f50e55d8587f6b817159b

  • SHA1

    b0a3026b1bfa955e6dc545e3392036ae6fb89e14

  • SHA256

    631fc6b2ecccba9057988dacfc10b159209fcc16a21a329d06095eafde9cd8b6

  • SHA512

    7151cd99a104330c033d0162e8e056e7581735aa903a2532076d93937af3d92cd4c10baa0e07daec0766c54dfc0b64df439d14adeba917911cd0bf8b656d486f

  • SSDEEP

    1536:etwfk5+5hbtwXeOxNeGjeIW4ZTx0Z9WCpOViHWdm2NfcwhZyW0mIJS68b8feb:emk5cI7ePVqxWKViCz6mIwXb8O

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6391e3f0c00f50e55d8587f6b817159b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6c7e3382ff33553a7897f93f40226f5c

    SHA1

    42ed566c3ce3fe3f012272eac909b7e874da14e9

    SHA256

    2d184ccd9d42e136bbe8bc09e04a3a052912af2453797fa2f3781d9f17b30ba8

    SHA512

    cacc3f5a407a2037e524d5a74fadfafccf4a2324cc84f55ebeda18b34385f07ce1cf95ec204a9b055ec11fa720bf5ea63431a05ed619cf580fc079ded38a1faa

    Download Submit