Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

72ce0a4b3e...5c.pdf

windows7-x64

1

72ce0a4b3e...5c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    24/01/2024, 19:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    72ce0a4b3e5b2b2f53b5c197239f665c.pdf

  • Size

    76KB

  • MD5

    72ce0a4b3e5b2b2f53b5c197239f665c

  • SHA1

    c39088d61230cce774a990db72c8476d481b2cd7

  • SHA256

    119fb774f891b210cf2fec04976b3b1209a669db7706fadc164bc1368613a554

  • SHA512

    a95503d3e705db43485aa0ba674c3d23b721550a58269befe834249a0dc80985a3a1aaf84f32c1f47b925d4ccc097c44ef7861370cbe51adf682d015ef6c39a1

  • SSDEEP

    1536:Fg1jb5qDjMvUJTmnbkopjpHN2EbruBSPYuNWGpOKlcRisqWbb0mvm4b:2b5eZJ6nYfEiEPYRKlcRis5b0mvR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\72ce0a4b3e5b2b2f53b5c197239f665c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2748

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    835857006c02f0506e0f5292cbca0535

    SHA1

    cf08942b320b8082ce31991428502abdade7beb2

    SHA256

    77e43a48a588511daca9e8ea9078cb37996a309b60d7cecbd58d438f193f9bda

    SHA512

    4d0ac10510729114b6edf4592619781713d4cbbdc23d45b6ffa1300ad4c05016a8660e9dc586048f043090fec4565a6483e3f3c6ed5fa428f33d3a5733fa0500

    Download Submit