Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

79f5ce2e01...2c.pdf

windows7-x64

1

79f5ce2e01...2c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 10:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    79f5ce2e016f847366a764368007be2c.pdf

  • Size

    35KB

  • MD5

    79f5ce2e016f847366a764368007be2c

  • SHA1

    63f9a6e9fd4411c64d764e63ed94eedaae022a40

  • SHA256

    3bd57201a7476e98da5c0328aeaadb3818b4434243fb802a71adf029c4e67096

  • SHA512

    82168b1092acbbb227ae31726cf315ec3158a5076bc28c36558d2c23b648d062cbc2f8ab365b05ee1716ba81c5c9168c191686505b92f284776bf23da5d03667

  • SSDEEP

    768:9CLWcoD5LODsS3OKAV0xm51YXeKqA5EJ7oCIwU76Lq:93D5LvKBeYXLhEFooLq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\79f5ce2e016f847366a764368007be2c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2264

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5ec404451629d935ef3ba7229ae61488

    SHA1

    5fdda8ed0d961b446b144177f3f1656e9a0113a0

    SHA256

    449c5517e1fac3d099e311b89962d40391297fa95ade59adc18e14d107d3681a

    SHA512

    6a62b739b0bd7de430e1bac7015a768e6d61e13edbf452187f8c0b4046a4f710ecaa0cf007d52cbe41c2feb36c843c285eaeeb4bebb4a08b0a7546ae9c7dc90c

    Download Submit