Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

64d7880b52...31.pdf

windows7-x64

1

64d7880b52...31.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 07:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    64d7880b52378250bb527d735df8e731.pdf

  • Size

    63KB

  • MD5

    64d7880b52378250bb527d735df8e731

  • SHA1

    4f9b9041a1516e720fbd05caa8d17dcabc4e8dd6

  • SHA256

    a94f83426b4b6c940dc31ba0d2bf4c138c9543dacd0a2a45fb2cbae531f74b57

  • SHA512

    7442b1b4f6a7e4c4b3dbff8f398551542346d2a5ca284c4a048bc31ba94eafe43f997294922d35a1a6fbe5275f6640ceabffabbbe19ba3af54d0f09d8acf9225

  • SSDEEP

    1536:bUFq6f3dtcHyhw+RPr4IDW/en0TXAT7164ESGXb8D6lHb4a9:oX/zdPr/WGnCAT5C1Xo6lHb4y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\64d7880b52378250bb527d735df8e731.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c4bc6ddde406cdcfaf21a2c361d46afb

    SHA1

    90dc60ca802aa12bd97fa39b3fcf55100217cf8b

    SHA256

    ca42b0970192dc33ec7adb023cf43210e3435b07f7b1deb0bd9bab94339f098a

    SHA512

    99d219e28e36c8d336aabdb8a145751776b2305fabcf56f1756447cb651a2f74a86de2acc53a76ca86a522676511682a89086ba626a7319a92a13c5a6856cdc7

    Download Submit