Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/01/2024, 05:29

General

  • Target

    73daf1e2826ce6561ff1773dfbdfe03f.pdf

  • Size

    94KB

  • MD5

    73daf1e2826ce6561ff1773dfbdfe03f

  • SHA1

    b2fd6d0b2b26384c622022cd815ed4a4884bab54

  • SHA256

    961c115fcb41039b3e1ad4ece95ba8dac59ebe052739b9696f9cd7829ce8487b

  • SHA512

    202b312d4a0e1313df4a90ad44d5c6fc1c652a8e04a7b733c0a17b2018a4acf0217d15127ee611597f8b02697423a5b14cac9c88c35c06b58cca3bd99774a159

  • SSDEEP

    1536:EWIlUBeHKw8aCQzo6VVZhsD5NpcW+st/ExnKgtyaQRbp7YvXY1ahsWo3SxDGGCWc:xIFHL8nQU6jUDvpuu/pgtyTxev10CpGH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\73daf1e2826ce6561ff1773dfbdfe03f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    389a2c039b2f3215bebf8a95d1e83c3b

    SHA1

    1cdbc0bfdc8d9e6b57f2ba147766134c71f8b63b

    SHA256

    3a16cbd422f4fb7ec20635a1a0e0855b622ce027b7da5655e34180239d778643

    SHA512

    892a6f0ec7c1a4e127a627fae9a928e3b711a632bbd279a84f6dcde95880064cb1d63eb8e1d3b5bde9f3f1122e17cca5069712af9a01e29b2e185381c5056fc7