Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

78b3584b5b...ae.pdf

windows7-x64

1

78b3584b5b...ae.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 23:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    78b3584b5b6f9ad7c56f79c9994c50ae.pdf

  • Size

    84KB

  • MD5

    78b3584b5b6f9ad7c56f79c9994c50ae

  • SHA1

    1406e3567f6b53ac41926003188115d902cc6117

  • SHA256

    c240c18095b29e03980b60b7fc7fc23bb387823434b08fee426218de56b80b57

  • SHA512

    69f1986e7236093741e28fe15f153624794fbb9821db3fe75af2f3e05298b533b1c2985f5dd66dd56a3a2a242bcd6a775de404b041a3a7fec89c3772ad0ad66b

  • SSDEEP

    1536:tIiJnesoVhWZdy5sIzweV2mmHtQ7L1jmt/h18jgVWva2Bp5Xz2CW8pO7U37:ice3TWzs2mmN6LVmt/h18UqDBHz2p7U

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\78b3584b5b6f9ad7c56f79c9994c50ae.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ddad4362cff6b4753574ce39b2deae90

    SHA1

    71798e6f3cd58b1ca3335422dcd0e2b137e8e29b

    SHA256

    c859dc88e4be9110328a4fd8cdfef4cd45cabdb28175e7e0aaf77da7c42d126c

    SHA512

    af00bf793cf1b79cd1bd2c8ddafe09b95ba35bcc9c053621a0cd36cecc62dc4f711867be84e9d2fda44c3b6fa78572d7ba5bc0bf77bb293907220523bb0cc945

    Download Submit