Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

7af4af4766...5f.pdf

windows7-x64

1

7af4af4766...5f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27/01/2024, 18:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7af4af47668b37e14b35867c4d4ca95f.pdf

  • Size

    85KB

  • MD5

    7af4af47668b37e14b35867c4d4ca95f

  • SHA1

    c24a8804df8b4525fbbc2263e6463807cd730b85

  • SHA256

    3931c066acd7ee67b8cba1690fe646b7c7b293937b979c05dabfe195cca2e6fb

  • SHA512

    973e0b40ced67d573b724f920fe28a4514c2a3b3e0473103c6a5e8f191c1df44b2d040e81c1748b16958bd77c2a0eca20826db12ccf6c8a23dc87dd21fe5b92f

  • SSDEEP

    1536:Ut7aY5YcD0w+vQkqStxmcG/SGGxQE567YGN+HzJadz7a5gWKwbQ9hJoZWbpONCsZ:wqcYw+vQjhlS5xQEMdNbdPa5SwbQ5obj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7af4af47668b37e14b35867c4d4ca95f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    36ac9ad5cc24f6b638171fec3bdfc8e8

    SHA1

    1bf6d3176a2e216bb2bfa787c0a7a2090450b608

    SHA256

    b319e9b4b3e5c05aacabaa328095d19dce57b0ceb7332e1bfb5e78cfc4d56ec4

    SHA512

    e06eb4f5a6d300ef1ddba639dac6340bd5a3a63e5780663177e285c991391b975fdf850c18b383681522fd43dc7a042f9fe5a9ff56b2efe7ee0b442ae8a11b12

    Download Submit