Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

877105855a...ef.pdf

windows7-x64

1

877105855a...ef.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    01/02/2024, 17:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    877105855ab50017db24c36ccc3467ef.pdf

  • Size

    87KB

  • MD5

    877105855ab50017db24c36ccc3467ef

  • SHA1

    dc14eb68318da7468becd034e4722def85505a5d

  • SHA256

    f672964510f13efcbfa88829c7e6852ce89712755e73b0791b3e7ed25faaec18

  • SHA512

    e7af9893efa77e7743bce26009ed2ed5a9ae77297256de9d7bcc032f20c64ff1a5d4c53bedb07996c8b1e9832075924c9c8db8ddf26587cae3ad8317c07d4703

  • SSDEEP

    1536:QFDraCCkqv0zZve7BLAvLTgpu7cZm7eCHKyGMWmh8zmNPBxUwWxApOG7VRQJy:6HCkLzY9AcQCm7eHe8zmdBKp3G7Hf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\877105855ab50017db24c36ccc3467ef.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2148

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8063962d95277a9b63edc46f8ecf02be

    SHA1

    2cb0a6c66ea0d58281f8e2a39bdde96b0d5e7622

    SHA256

    2c6dd48baf931139b4dfd955531b9e317537c0cb8d3363ef8e853837928f63b5

    SHA512

    b27949266bf3f6617fa5cec7082b8aba295b65462c97d7b5e2f275b13f2a78c1b85a34c099cebe82c1cea3bff15507276bac76f55f93fc757ba07a983667c779

    Download Submit