Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

85b22352ab...02.pdf

windows7-x64

1

85b22352ab...02.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01/02/2024, 02:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    85b22352abc8da5fe11e7c92dc2de602.pdf

  • Size

    46KB

  • MD5

    85b22352abc8da5fe11e7c92dc2de602

  • SHA1

    27ccf88933dd665964bc8b535911549f61984a57

  • SHA256

    e2ff3472d4c410f868e8a6c9e6cdf20f1a7d6ed5574d2fdf587eee5a704c4754

  • SHA512

    7aac3c0a6877c27591532d76d991dd7350cd95862c2410e4ed6eae1e69db369180a9ffdd1d99c4bf8c108fd139a340e46903f05be01cfcf10f27a10fc3ec7b9b

  • SSDEEP

    768:2LLx4YYVqbfhHen0i2c12cb0rSqidFbeMGHD1+KtYRNCfRRLyMvkd:2LFpwCNeEZ+AONOHpvkd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\85b22352abc8da5fe11e7c92dc2de602.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2296

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    01724ff305c91d568c6619d2ec15aa96

    SHA1

    03e7959f834dd942c59363ec6bfb9b5d18fd5ea5

    SHA256

    a07460d4011fc884793efed6cccfadaf1ceb3444073c4c2e79aab4e1c6147f7b

    SHA512

    a352a72e4ca05c2bff4ae6c8fa3f10f072556145b966f44a5f0253f5ff575148b56ed0db229dad9184c2a1ef363a0242a5f910662012dbc2db053ac608104fe7

    Download Submit