Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

6552216da9...65.pdf

windows7-x64

1

6552216da9...65.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 12:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6552216da93b8f07f31929e500832465.pdf

  • Size

    88KB

  • MD5

    6552216da93b8f07f31929e500832465

  • SHA1

    44e63758219f529ef3d9a7b141931a5c90374ad3

  • SHA256

    ad57e374656bcb27d6bb6f2f4e723ab50c11c913b99a9d22f3f2a890e470b619

  • SHA512

    9bdd470b3830d8c5a74baf2d216f4e6d3e601b814a6309400458a9c43602d389e844251f1b81ae80c30b29c740017fea09ec21433a0b6ef18afcd326e656d99a

  • SSDEEP

    1536:TK+7cqtc9bO66WdzsFum8ilBEgpczhiT/zfse5qKxlECSWGpOKnNN2lWGFG6EacX:P4qtcJO66E4E9i4gpczh0zkaqKxeoKbX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6552216da93b8f07f31929e500832465.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7a406bfde40eb8359c62d02ce26c8dfb

    SHA1

    0393195996da98eac0720767bc20afcb53bc5bd9

    SHA256

    d87cc034f16a7ec76a475a9ae2628c88a5dcade0b4539f9cdb589e2582217d95

    SHA512

    0160cf9732ef8fd8466663be4e7cb9ffcedecfa0bf72741823f8b92ba58124944312f1af57edc942962c45063484cf6de9a4d353b7338927945f458236ad4bc7

    Download Submit