Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    03/02/2024, 17:47

General

  • Target

    8cf5142b8f46946dc32708b11de7e6a2.pdf

  • Size

    93KB

  • MD5

    8cf5142b8f46946dc32708b11de7e6a2

  • SHA1

    ce780a2149020b602546f8dc3fc52a36c20964ac

  • SHA256

    8bdbb5c438af22ae4f98dcd196f9eb1c35d88d920f36e5995ffce341d693efdb

  • SHA512

    e8eb21da386444a7f54a9fee4cebe732f11357d70c53f417acd8dcb74392bf3cdbc1461dd28f26a23e45d670e474748085c463a4cd6713096398e105fe5bd4c0

  • SSDEEP

    1536:zRDcjlKK70avkg+clrgJCcM2gmokQVoEzi3zbmaQkc6TIcZBQ6L2Mcsh8086sOzr:lDiKguclkJjM2ekLp3zbmaQGr9L2My0N

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8cf5142b8f46946dc32708b11de7e6a2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    69e73886272503afaceb6c2c2779e3c6

    SHA1

    730c8ca52cb4955d0f4494e8fd96388ef71d1152

    SHA256

    3cca031057487fd81edf3a1cd8dca0214d683fc73c42a93108a71598858f33ac

    SHA512

    d3c5df60db8f77e73327254c0cf4294adfd3a2033a3f55896269079e5b7b570c82322ec07169cbcb319e12dd78c1c012a4b7b467f20933d3aec85e5266e28b2c