Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 09:36

General

  • Target

    770176b2daa34b7daa98ceac69936057.pdf

  • Size

    83KB

  • MD5

    770176b2daa34b7daa98ceac69936057

  • SHA1

    b00170af17d2c250394bf943a97f0aa91bc14509

  • SHA256

    b08478c1ba4ee2cf72a71a47226bdd92014c479b808cd17d0371b8a194e9abd5

  • SHA512

    15de304ec86b27ed8decea69571e78627d4539bbb3fc6f5f093d3ff44685ea8aa6901c6776893f7358c6620dcb6fc106760ef3f7bc8b4b1dc49a13d5dc58172e

  • SSDEEP

    1536:l68nxAl3JeM9PlHtnq+ChWA/JMQJPDGqgNSiS/M6ZMDWhirbggH70P16RBFHWQpB:I8nxAlJP9P/EWA/uQNUNSn/MoExHa6Rd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\770176b2daa34b7daa98ceac69936057.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f8f5436914d556591272d6f1b15631ac

    SHA1

    7d1b9b4cf85e913c3ce896520835e14431dd53b3

    SHA256

    10268a93c24aee636bdc774468552e8690189a7f53db8677a80d42d3ee1f46d7

    SHA512

    9a7ff5f13767818c3bb395252f5e3ed3be318f180f07064ef43917619ba1c50a4780f4c84c8a6270867a6f32a88ab7e1925f8572464eefdb0f4170cf17a91c29