Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

78b37b4ca6...af.pdf

windows7-x64

1

78b37b4ca6...af.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 23:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    78b37b4ca6397fb1cea3c8432cc185af.pdf

  • Size

    41KB

  • MD5

    78b37b4ca6397fb1cea3c8432cc185af

  • SHA1

    df1e3c69b08d7c565281ed59df419ec676a24f7e

  • SHA256

    614699aef962f7666f925637c2cd00ecd8bacd121a83cd9f6138c817ff90b52c

  • SHA512

    f2fe847e44eb894ae2fcb11908fc48e9675fb7a64575dbe4838e1af33ffc2f06bd09d5ce0d97d902013701bfdb2aa07ee65623115ea0d8ccd2dd0eba820b0d86

  • SSDEEP

    768:uJMkxEHZYTVJP4QjskWm4zCCHmtZRQpKVfd/AJ1BRoJ/:uJPxksPqm4itiKVfd/AnBKJ/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\78b37b4ca6397fb1cea3c8432cc185af.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6e245574ccba0dc45a0b45ba16e04778

    SHA1

    4cd8dca433ac6fdb01be4a7dbce0bd2971e8d904

    SHA256

    d0b1a3b09140b301f27d5cff36b5db782194d14b5649314779c02f0fe77fa384

    SHA512

    bebe7f63c188d83bbefb136c9760759a770b42153435674115fea95801cc6980e10030dda85bbedf4e7ef4a9e4af0f16003f3f476aca42eff929aabe472771b8

    Download Submit