Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

7cd9d2fcfe...88.pdf

windows7-x64

1

7cd9d2fcfe...88.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/01/2024, 10:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7cd9d2fcfefd40528cd3b24498578f88.pdf

  • Size

    85KB

  • MD5

    7cd9d2fcfefd40528cd3b24498578f88

  • SHA1

    4cd6880f87456058c2ac877a1927e0c98645e8db

  • SHA256

    6883f365fbee3776d504e36f76dac31fbf8841b30e2e16e7b12c6ee327555c03

  • SHA512

    eaa83b59f562ae5f47186465d94b72896b930892c8d860c172f661ba0ef7cb9d3f71681c8bccf1c6bd57ac8a2361d5d7bd59946915885b3a04b2f061fe913a83

  • SSDEEP

    1536:SJauY3sA0U6v03eAhnKDumLEuuzf2lLfe7OfX7udWJ68pOWGpOKCWN7Nc/gjnWyf:OaV3sAu0hYDtLNuzcfF31KCgvpbl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7cd9d2fcfefd40528cd3b24498578f88.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a6f8472b27ed93c70c3ac0fac3731959

    SHA1

    9494b26986130a2f1d133ef05b4957c3160db849

    SHA256

    536769db71ce3ce2ba4cf5248af2b78767bd6ec2c5549d5b2db0ab3bf89d2daa

    SHA512

    5baed5693c584cf1ee14d0900c0084ff48de4b576b2eba5d314681ed3648a1246b2925f33dbb67d58cbf2d391d7e7f91a8756f39b0bc201f6e5c1837f8545d4a

    Download Submit