Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

79430cba9c...51.pdf

windows7-x64

1

79430cba9c...51.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 04:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    79430cba9c4a3d95c9a4a815fbb01051.pdf

  • Size

    83KB

  • MD5

    79430cba9c4a3d95c9a4a815fbb01051

  • SHA1

    257910dd6769864d8253e90c8d0da67e79dbb8b9

  • SHA256

    59d08ec84ebfdf1be8127e9975dee7746e3e05a3720be580ad198d2885b5c1d1

  • SHA512

    5173265f8f77cc070c824020db5d681cdcc119c0dbe9d99478a699a3cec58b777a78becde68b4cd4b9db131d9e5bd33d14f5614ec9dd8bbe61df65d23355a102

  • SSDEEP

    1536:cSQD4cT55pxWaN67E916wNItx9lSJ26VvZklp4mIW5zJDPgfXWwpOS0W5:44cDpIac7E916ztx9sTvZPmlJsfqSZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\79430cba9c4a3d95c9a4a815fbb01051.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2668

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8b08a0fe9c5080cef33e31e49c92c08a

    SHA1

    d66c060881fe086c95d5e3bc1e2441c5d452a009

    SHA256

    a901fc3f12e4759ee6dba15f67a915b12f6f6cb4ea16986b70466f962b53fe14

    SHA512

    305e4b62a8afa103864e931bf3cd522a169896d77f7c43a19d068e5c73a1ddeb9162640432831efbc2471404924119b5c97d6a4bff076788abff5d23dbc37193

    Download Submit