Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 01:28

General

  • Target

    76070dcb925d499bf286fcb1d359ddd8.pdf

  • Size

    71KB

  • MD5

    76070dcb925d499bf286fcb1d359ddd8

  • SHA1

    eade99d5c87fc4212e8c95ae5fd419d3457c3728

  • SHA256

    6ac95fe0e0dae1553ac67d034ede77561c2ad96976f1f1789f9f140d20d67b91

  • SHA512

    350ab1c7d9f9f419fa15902a50ad96662ff8862f3fba82c6fd6514d15c909176c0ba172aa9c9ee3f9c9e09cd937761665422484b0b3f887978693aa741f45e2d

  • SSDEEP

    1536:Us3HlT+VuJTR9nQlkadtZriguru0nM9uTdw/Y6ywnBHYYZUtKDvUuHOJl:53lX9nQlkadrifr3nM9ui/vywneIUtWq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\76070dcb925d499bf286fcb1d359ddd8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    56a74d9a56e2144bb9faecba96370586

    SHA1

    750c8c9bd3c4d44b7b80902b379a9c6236f28495

    SHA256

    18a25d7666e4c7000d16af4fe4a05a95238962c01f10e5fb2b146340e225de29

    SHA512

    ad6d672872c3c4e7e835ec99e712006813e34521cf60f2a89727eba9d0a22bfda65e08bedf9b6f0f00739b743005d1699ed1a02ffe611fcd96348086dc893822