Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/01/2024, 18:11

General

  • Target

    684c64301fe800a11c462d91d3416f17.pdf

  • Size

    81KB

  • MD5

    684c64301fe800a11c462d91d3416f17

  • SHA1

    acea72ec2a8ddc6e788c86278d8a4d59f59f75ee

  • SHA256

    33eae5a85b02e23dcb62abbabdefab444fc4b8db571d8201942b097b12a2128e

  • SHA512

    10a8ffa0dcb8e6b933eac44680a1c161b04c0ecb2a98696a7f43582c7897a93809ff7bd1758d2dcdf0455a95b50ed6cda1f11152bc18b7e71d3267e60c896915

  • SSDEEP

    1536:0+B4jbInVH69kJdAkkpbGHlHcVm+tJPt1yli09zzQqy5eMf/zaJ:NmjbI2kdARbGHl8Vmet1y8YUCMH0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\684c64301fe800a11c462d91d3416f17.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0182097f2760612d2856b19f550ec7ac

    SHA1

    c7b7964570822173a8bc595e1a63c196de3c7d72

    SHA256

    0f6dd95a8026a55f70802b6753b6829a444e1dd100d714283e68a58c318f9ea6

    SHA512

    1c18fb3f6b7b3f76a883417d59e3244604b692942fde6c304c1a1f995c4d3dd9bebb65b262ccc61079201fa04b083bce4ce4a530c369156830fad3254be00762