Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

6628679cec...fe.pdf

windows7-x64

1

6628679cec...fe.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 22:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6628679cec647b7321db8d06ac43e2fe.pdf

  • Size

    89KB

  • MD5

    6628679cec647b7321db8d06ac43e2fe

  • SHA1

    b0388aec16960a1e9ce10fddf7ec04f5c687b2fc

  • SHA256

    8eeddfbb0dc028c956d2f5dc64a8775ae8c617ff0bae8c89c5c5040590590b98

  • SHA512

    1ae20802e398c8a1f35074073ce4c7a058b35908209c37db71ba93a17da542d84187a609ca67a83a3cdc62aaac61065359b787ecffe87b7d8cf45a0f5cb2fb70

  • SSDEEP

    1536:X86wuXAPR54neINN8ZIZWkzXMHQ0g66Myc+EHRweWFS8jURsb0nmWgi6+:ffXAHCUGLXmJg6J+ExweWFGRw0nmY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6628679cec647b7321db8d06ac43e2fe.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    81fd022670f7f471144b9fab9ce03095

    SHA1

    2a4f9d556c9c2ea553025cc17186ce9f8a666a09

    SHA256

    2c0a99f9ff118e98a6b2de268ce3cf86b31115abc4b639804967bfd831a32582

    SHA512

    6ceb5a2693fb5f0c1f1a49432612b64c9ff815f513a5bab320ac2da12d1d36731eb4e8d021b99d58d51c03325a698ed0128c9df3a5053e69201e4244ee9c5139

    Download Submit