Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01/02/2024, 11:51

General

  • Target

    86d217fcefa89634a906c201a87b4acc.pdf

  • Size

    89KB

  • MD5

    86d217fcefa89634a906c201a87b4acc

  • SHA1

    63303178e9bb8e0f731f34f9076783dc58a97966

  • SHA256

    257c3b44808b3cf3687ef81da11dc955f444e6310826ee7f0bf5fd14a14dbf59

  • SHA512

    0d276abfbb494540cf67c746d8568dcccccc39292fe4f566096d61fbbca83278f83452fbe5d9098de387ddb3f4147387afb5e2cec6a5b303a62feb96974d26b1

  • SSDEEP

    1536:mgAnoPOt2pyMm/sRAP39EoOa8OY9iX5jTwR56DlIu4FsBnwgMWxApOGzWK9/eHSN:fGwpAWQ39ElFDS5ME4FsBwgN3GPeHSPF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\86d217fcefa89634a906c201a87b4acc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    aa856b941cf916b8518533f9557590c9

    SHA1

    323b92af9a8e281d9d9359f808b17fa16b587b9d

    SHA256

    c084178ec69034cf7bf3857c7123ee58e2d081964e3be14626e6028ae9e16c41

    SHA512

    799943ab814b3a98623eacc16113ad8d47fa4426859ed639bf3c886aca3677f9ca69aed02a97a86b2f1e41176e86a4c27b892add6df4fc9bffefbc7b4886944a