Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

7c8ee3c515...f4.pdf

windows7-x64

1

7c8ee3c515...f4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/01/2024, 07:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7c8ee3c515a92e34e50962b86fb175f4.pdf

  • Size

    36KB

  • MD5

    7c8ee3c515a92e34e50962b86fb175f4

  • SHA1

    477adb9da7c5e38c4c6d1d785b251dfe276a93eb

  • SHA256

    63039000fb09fa800e4b9949bf549977ff0ad30bf52eae023b1bb9a9975decb8

  • SHA512

    bb090e1f1b272d0dbc76123fb59c5f5165964fde4fe01e1825fc5eacf272fa543f49f3f08ea5e92d57b9c9d220aa824ba2adff4af5a7598eebb56d3bed126efc

  • SSDEEP

    768:F5Bq69DsDYHYQt+Clox1o6eE221nzy6kz9n4Hlp7kS:F5dDsDeVu1o4phyRR4HllkS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7c8ee3c515a92e34e50962b86fb175f4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d630695eec1161cfd1b1909da52f53ff

    SHA1

    dd37ae2b508a6bef8c6174ef5f1f00e0d137a74e

    SHA256

    e0dda584f71a3c92636eb77ebe168b763ffb748d7fb29b240ea20afcccb2599b

    SHA512

    267d8c2b3012541c3688d1d27c1775f0414d3ef79806c2955cd1f9d838a5bb8667138322f5d0ae0f599ca6b13c0f910db937c0754948c4c5fb0ccee5fd208420

    Download Submit