Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/01/2024, 11:18

General

  • Target

    7cfa75eedc234d7cc08800c71e3a9ba3.pdf

  • Size

    84KB

  • MD5

    7cfa75eedc234d7cc08800c71e3a9ba3

  • SHA1

    00a7ed143de8e1b5f6bf4cef3e16b3815e73a656

  • SHA256

    b2fb8edb3f81a9492e8d09391ecaf38864887ed06ce5ccf97be097da53043337

  • SHA512

    ac6d1befdd7fbcccd3b70131ab108b550da2824eff77089210d4cc9cd874cf843899169b0cc4679563c49b3332604c1fe7775af0f1e0d8f0a673bde2442143cd

  • SSDEEP

    1536:K/BG4hIix5NW3TJCkqzMTV2zr9miWtqv4HGnWspORpqfip:GNg3TJCkqMeBmG4HGWRss

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7cfa75eedc234d7cc08800c71e3a9ba3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2528

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0fc85cff8e1c8288f3eead65f3f2cc0d

    SHA1

    6d3d30e822ff6811308d8612ee390967c0004413

    SHA256

    fea3510402c29ad2c632a1efad254afea7e28de1d2d0a2067eec50f157300bfd

    SHA512

    23748c4943e3a09359b88317857660f63de13a6ee99c61e10e61bc9a135a02b6010a2dcf373c017676e151a488b1cc153fe920f2344b4e030b8278d6770a825c