Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

8be4b15f11...a3.pdf

windows7-x64

1

8be4b15f11...a3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    40s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 08:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8be4b15f117a542dc0d7c46a54ef3ea3.pdf

  • Size

    114KB

  • MD5

    8be4b15f117a542dc0d7c46a54ef3ea3

  • SHA1

    d2ad34597822f838938526607c812a6358b01a37

  • SHA256

    773721d2bcc62780e65d8926ec360cb4d1cd9973dd341afd056c3d2bbb671f41

  • SHA512

    452f17382e3c5dcccb731ba49a3550c7f9ac0cb606cd1fdcc3228676c5c7271e9f4af8a25c35c8fa8e8edc2d03d360eeda37525647e2842ce3ef15b260152c2e

  • SSDEEP

    3072:xsBegGuno1wdTsNptXfmpP5YdrUMTuneAbNmXoVtbt:xs5k1wdotXfmqrUEugc/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8be4b15f117a542dc0d7c46a54ef3ea3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2844

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    526c74850ae6b4f310f4deec1695d466

    SHA1

    c1d2ac93c7f916443b028b52b03216e4aa02fe00

    SHA256

    6903761170a3aa6a4d7824ca6adce2372b84534521858bff2ce8f60aac7dea05

    SHA512

    a5925c3855af80644346481c001cba7f13d1dc17be7ee65011ce19715702a09e707dcf8e854c01aea4a089292678b20328aec72b600f5158633c65fc11f6592c

    Download Submit