Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

897771ab88...11.pdf

windows7-x64

1

897771ab88...11.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    02/02/2024, 12:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    897771ab88e8723dafb207d94257b211.pdf

  • Size

    69KB

  • MD5

    897771ab88e8723dafb207d94257b211

  • SHA1

    77ea3386bcb87957c7928a9ea897e325841fbe16

  • SHA256

    feae813e073cf11d500610c8d7156e26e63e8409fdd4ca12c918d206dc92e779

  • SHA512

    b0cdd62b6c7d4793ce9c16d18ab0da45abefecf2f5567b74381397932e4f37206c5e7f3c201762688aed7eef5d4e4df16849894292e667502faa27400f63575a

  • SSDEEP

    1536:p9Pgfs8WyEFSNyx5M0lNKBIWhN78rOAR4B8jv9dGWzCFKHxZ9ZnWspORSan:fgfsTdFGCWXhSiAR4qjkOxXZWRT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\897771ab88e8723dafb207d94257b211.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c517a8d05cbd3bcf26d9a793fe6f6688

    SHA1

    9024380635995c080fe76324324be97331262165

    SHA256

    cdbc2c6eb15f00f9ab2946896a096ee34bb060667fb5948b9be4d24e1a72f932

    SHA512

    654058c1a5c35ef88939f1e3c6738d90eb24e4b02986ac71122cfbe018dcebbb49cbc8dd18f09b1b5f0d2029e0c58b99a890e3367ba7afc8e270a3cf787ecbb8

    Download Submit