Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

67271c5e65...67.pdf

windows7-x64

1

67271c5e65...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 08:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    67271c5e658a700960ad92720a03c167.pdf

  • Size

    153KB

  • MD5

    67271c5e658a700960ad92720a03c167

  • SHA1

    b7e963aaa85346905948e93fcf4f7ceb151ebfc9

  • SHA256

    73fa87020d2c31e530ca18b218cf580cc181ff0e25f3c8bb48eb69245f06cb27

  • SHA512

    0cc5bc4b2f0edaf110e3cfd803d2acaecf18ea824a4c3345265e015ba7034a41af711117c8c252a46f6258f859c912aa65a7dba20002c789d77f09197b67631a

  • SSDEEP

    3072:Pq13NSDVK4XvXOaYwuMHY9VVi2vJrPuNIaMqBoxdKmY72kBP:2EK4PAwuMHglvJrPdqyG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\67271c5e658a700960ad92720a03c167.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e77f0bf36b4e3c485de377107159f59

    SHA1

    8e1ab837e7d871f716ab4de2cd191568b39e8b43

    SHA256

    9271756a2f4382f697774dbeaeb19c67f6a84435f5a9229e5cc9c7dac8c1ac51

    SHA512

    efde57ae45e5c796a151c0ef1f977a90d74c37adfb44e5ed565736d4449c56d6f907584191c590ff41e5fb40e7a0675e5286116f3de7fe72093075cb83c7c67c

    Download Submit