Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

67f1c00797...27.pdf

windows7-x64

1

67f1c00797...27.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 15:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    67f1c0079707c8472f8c3da39567d727.pdf

  • Size

    76KB

  • MD5

    67f1c0079707c8472f8c3da39567d727

  • SHA1

    c4f43485bd4b514ce80532d840225cca58cdfcd7

  • SHA256

    50f5be02b8178f99ff7f12bee67d5fd550360c3f70860fbfa9b460bf59c1b0d0

  • SHA512

    201f4003a554bc67b3a57ee16a46fe16795bdef1d9aa40d0875fb84baf375e6e53a7cee30056308f5de55a03ee35aedea0375be6e38727e38da0c526d8128d99

  • SSDEEP

    1536:gB3PUJ+3P914v1bRRtD6KNj+A9rSWnWFbeNbaljS8HdWz0pW8pO7ry/:g38J+fkv1bRCKxflNbaljSWdA0A76

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\67f1c0079707c8472f8c3da39567d727.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2931be80fe789a259a9330c4916dab4b

    SHA1

    bc5b5459d177e5ed8a4bb29c1b1409a646b95207

    SHA256

    4b35094e86dea6d54e016e0016591bbe96e837c28efb0e7994adcf1eeee3acfa

    SHA512

    b7f571c8bdf567f6dccf80120a3e5b9d82b12099f3f74290aa621aaca9e830520a678188bf410c05f4d3be4c3f8ed2fb2efd9c1081c2c0648ff0a063737999c0

    Download Submit