Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

76094b3278...ad.pdf

windows7-x64

1

76094b3278...ad.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 01:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    76094b3278013d102918f02d3ecc3cad.pdf

  • Size

    81KB

  • MD5

    76094b3278013d102918f02d3ecc3cad

  • SHA1

    08b8c2f94c698bc5d33f2bc48ee87909241196b9

  • SHA256

    81ff6cf6c06aed5e643b70c90da7b9ada926908dd699770e6de4a476f11e6fe3

  • SHA512

    fafc573e22c4fed12f053fedd674976fdee43d7e7b9044236ef5ddd6054608658d44e5ef7291e022b436853f3cf2ace277de1055de9cf8008d337cdcd7b24ea6

  • SSDEEP

    1536:pNG/LqwM96XxGI9hbgJbH8smWbqBZ7Cb/ZjzwsNVeAzWOpOaZEWIjppc:WTqbYhGgs5yyIChj80/EaZW4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\76094b3278013d102918f02d3ecc3cad.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ef4c1b9fdbdaf92aaac79790735acdd2

    SHA1

    2b7d282b7862b3aaa3afe2db8d1ec84a7a123eb7

    SHA256

    96dd52761e65391bcbba22a72af078c53f9b78f882f039b8a4e58021f9b14559

    SHA512

    2f38fddd478b6d39d739159d6f66f54d7f6acc5c242521372110c7335dcd87cd57e2a4787658c1c11cd222697338ee379baf1e2acdeb10d635e327528f6661a9

    Download Submit