Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 18:57

General

  • Target

    72cb7539dacc1e2d2dc86a261f2a3e86.pdf

  • Size

    79KB

  • MD5

    72cb7539dacc1e2d2dc86a261f2a3e86

  • SHA1

    4ac73f18b54878dbbf23e3117a3f93ff4b3ed5e1

  • SHA256

    291dc0adccce2546f344148ac1522317cb00084a253fdefbe10a17b0de08138e

  • SHA512

    14dd27451466173f5eb08f60a3459c5ea6ed3e200d145e4d75d9f99aeaee55b65f90234a2268912e1e772d413fd54a2d7320ba5bd9f9f9e2dde9c69bd5ebc212

  • SSDEEP

    1536:l2ww5DapJOJxwHIr68vlDBvJDH5XpmGJesYOWBQXQuS5KB0j7EWQpOCcbo:Zs2JQCI2uvZH5XpmeepzVRKSj7DCT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\72cb7539dacc1e2d2dc86a261f2a3e86.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    8a0198e7c55add8dc297bf9bcf8a55b4

    SHA1

    4056440acc05b2e1245c3bdd8df2f64963c3b859

    SHA256

    221003a9790834d8c64b27902e58c76771be142d84a2152ef087c5b9ff172c8b

    SHA512

    ac83bedab9b1fb075f478bd2a6fb421aa3cce5372c6a17f5cf500920c79513be28fe8ff7389c154bb14abbd8b0daaa38eb77ab774ffdde09f96e0cc437d1d68d