Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

8c529b8680...40.pdf

windows7-x64

1

8c529b8680...40.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 12:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8c529b868029a2861d2e9762caf08c40.pdf

  • Size

    81KB

  • MD5

    8c529b868029a2861d2e9762caf08c40

  • SHA1

    abeeb6dab88ec578938661777d174ad0ff9c7f02

  • SHA256

    23707a9bd5658532353a09733d1b24b0033b2fd7d7f7cf890a9f52fd0727cd11

  • SHA512

    fbabdb1831c7bdb7820483a1da36bf2115d00b6eeabb212320c91ac57a76e8a02c8c8e03ce6960f06345f648cb8ea7665ed168d7504f974976d9ffe3d5deac66

  • SSDEEP

    1536:ltKKZX0GmPOVyPBfF2ImhxQtTUizeGPZZ16fCWjT0L5X41MWspORugr:eKZXZVEFroovNPZX6fR+5X41nRT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8c529b868029a2861d2e9762caf08c40.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6364012119f334471dafd6cd98acbcfc

    SHA1

    d528700f0025961cd34fd3b9e64294d11de71457

    SHA256

    82bc66baf22a0237d99cb7de7b1047c86149913f4cbcee155a839bfb39698ae4

    SHA512

    3193169ca5420cc4b70ffd61cb571b07f753651a8ae5042fa8148821a8e4acd83f01ad0c99a0dd47de149f4cb24c64a63d648162977e6fedae7768dea0750509

    Download Submit