Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

7e967a5e8e...c0.pdf

windows7-x64

1

7e967a5e8e...c0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    29/01/2024, 02:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7e967a5e8ef32e29a2546f6d639ad9c0.pdf

  • Size

    86KB

  • MD5

    7e967a5e8ef32e29a2546f6d639ad9c0

  • SHA1

    3421a3c94326c2fdb738d204da14a0d03307432b

  • SHA256

    138d0bcbc0443abbe09a43aa2e7710e23ddb16ecfe6cfe31aab829a3f98ada3b

  • SHA512

    ee71c0d2398415aee6e4ebcc3357368cb4663fffd7505e69d72159ee4f3372678dc0ebcb6e1b5709f342837586e1c4281307a620dbdb1da7950f43c966299cd5

  • SSDEEP

    1536:Zafzflk5SB6qtF/+ETFeHyElg2WkNpOPaWgDLPfB16vU:I25S6q3/+ETgyhPoPHj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7e967a5e8ef32e29a2546f6d639ad9c0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    095c059209b4485cf7ff2724d599acc5

    SHA1

    b8eaa1a325cd62518c4fa853ffb41bc003b62818

    SHA256

    80c6a38e91ab3a6747884e08f7ba156c6c31e3c4c37a584e8943d4df0d00b08d

    SHA512

    325b0653c9a7a65bc7c3220315b917c58008504eff9ed7065a76e67584fb95691139be504d5bc854a8327c05f24487f7fad1684244ebad198bb3d6decf3b72fc

    Download Submit