Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 08:23

General

  • Target

    6725edc2364da8aad17e9f2b7a4a7212.pdf

  • Size

    85KB

  • MD5

    6725edc2364da8aad17e9f2b7a4a7212

  • SHA1

    4cd4490b8230e5d13106d83b126ddd61107cdad6

  • SHA256

    c8aed033e225b72830c58656012e3f4e3ff7bf10814f8c7fa402df4e2fd963fb

  • SHA512

    2c767c1f6609678e344fb842b974a9097588f258e89140857b6eb44a18b2e6ec9b397a270fbb03cbd2859243f4bc6823c193978c13af9d280742e4df8644e46f

  • SSDEEP

    1536:YafgwBPk+97GRSJrwjCQ7BIe50yoHqHRy6GflWJfc1tTQmWQpOCoFV:FgwuaaRIrwjRBVygRy1f9dQZC6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6725edc2364da8aad17e9f2b7a4a7212.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b04d91a1369008e230064afd8a05bd60

    SHA1

    73e51f18524c4fdbcbff679220eec23e169e23a5

    SHA256

    ea48ec424a64cc4cbaf832a44bed6faa527f20ce0614b8f4381074c9b75dd15d

    SHA512

    1beefc5e63eb06165b978442d34e3881922c19f2aef13ef9124721ea9bf96bad3b2d059f131433965d09879518de948dd40bd3f704013c21ca02da242bdde767