Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/01/2024, 20:17

General

  • Target

    756c0ba65ad7ff62d4fa9df9c9371b5f.pdf

  • Size

    86KB

  • MD5

    756c0ba65ad7ff62d4fa9df9c9371b5f

  • SHA1

    b8a04bc9ed3c0b835f9c7090eae4660d8a65b2b6

  • SHA256

    858f65e3a19623b396a1d0623cbd3b7099d3ebf6e6bd829b4fed80f1aa1a4a18

  • SHA512

    cf80905544ce1db83dc7ad7e98f40bfdc670a1f4ee3614166ff16d35fad056901b5c1da4ead306ff8d2bed0b4640c8acf24fffe8acbd0b76fbb380f797063bf8

  • SSDEEP

    1536:JWKky7WsCzPI1UYkOlYlIjrAHvgKsSRYi//bcvTWspOL4Wshs623S5c6MrJR3D:YKZ7QzSzalIYPgKJRYKbSiLYs623S5cb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\756c0ba65ad7ff62d4fa9df9c9371b5f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    69f6c7e9b6659324eb557fa6841eeaa2

    SHA1

    2bdd32d1f4f6445349b72d4f4fde517bfebb0be0

    SHA256

    b2a71632da8421cc15f4386de9a32545fdfa99c832cf3c3b72e800937b1ce06c

    SHA512

    1d973b4e6d7d21da838d3b2bfc5c5864384ed1fefb33e29a55d0aff093436c1a7865a180a4e8697802d4430d7550bab870eff31e7cac300f8d7b4f6f34ba56e7