Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 05:38

General

  • Target

    8b88de08f54963c40c1c59a08cf7e59c.pdf

  • Size

    85KB

  • MD5

    8b88de08f54963c40c1c59a08cf7e59c

  • SHA1

    02e7a9958cdcbb73c3fbdf6cca75bf53fc730fd7

  • SHA256

    4646d6df68ecdf083cf83cc4836cd14ef75dbd6cf5625d2c2ca6dcc5e349e5e0

  • SHA512

    0f889df11c5c33d6a9a8023b85c8ce084273693e5aff52dcb421f602f5ab8b99137b70d5f56e8fd48a8f8f45aab16f540e50573cb4ccb0ce1e29c28ac519f7c0

  • SSDEEP

    1536:WHgpL5rJtDOBclhAvco7FaRpxj/4JkTJBr5+qK9WkNpOPaWB7OEyT1OJzQ2gR6A8:PptrJVOBQW7kRpxj/dT0qKmPviEyT1Oj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8b88de08f54963c40c1c59a08cf7e59c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2676

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    fe2daff4b55015751a288d5af7f73e65

    SHA1

    2584968daa384d5d6bd896e3eb46671f740e6ea4

    SHA256

    a215bcade02c51e2607e8571a97e69e09c1276d262d7646962c684047956dc89

    SHA512

    b2e5d77c91aa82c4c14c23b1495f97083454e8a385ef37c3946d37622d537fdab6a51e8418e4d727afcfd78a01275174dac6c0532bb8f0982877fae967723162