Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/01/2024, 11:58

General

  • Target

    7fc784c5cb9face103a6aa9d05fec7b6.pdf

  • Size

    87KB

  • MD5

    7fc784c5cb9face103a6aa9d05fec7b6

  • SHA1

    e8096287d585390338b245924279708509c82662

  • SHA256

    185bff5a5850db8fe545099067101c1e69e1a5228d8629c916128f7071ab56e6

  • SHA512

    cadc73e60a367f9486c0994597d5570cf6f07e728799c2bb2e68676f9a02b225f9cb7ebb1658f5faa0fb79ce200583cd1bc069e489f1d79f01d68e75b315a6fb

  • SSDEEP

    1536:lAYlXDtgaAVRIclSbwUZM4n6iESbB1VxDtYbWkNpOPaWKOfx1fXGWmoaQkTB5w/L:22+VRIclSwhg6CB1PPz5tm/TB5w

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7fc784c5cb9face103a6aa9d05fec7b6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d29fe284161f3a0811af207e440606ed

    SHA1

    a695c8f0afd2e626cf9ff000e7df6c82b47a6fc4

    SHA256

    85ceceaeb2877e7d72e09237836431422dfd283284829670f6cf44c3248fda10

    SHA512

    8b1c5b93f1346422a487397fb63497c8ee4d5b07cb264b8800ddd14ee0be0ba97ae1de43f4802b1aea79a51fb5ba418e80395cca0b698db21a43e4545a1431ae