Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

8dee6e5e7f...83.pdf

windows7-x64

1

8dee6e5e7f...83.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 01:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8dee6e5e7f15a4dcd59fb7bc60572883.pdf

  • Size

    82KB

  • MD5

    8dee6e5e7f15a4dcd59fb7bc60572883

  • SHA1

    2222a158a523ab106a4d987b208245f11d821ec5

  • SHA256

    d641b1daf3004c400260a070bc0ea55abb4cfad47ea2147342f7e31c3df38acc

  • SHA512

    05b73ccb6898b64d4816460c95e80aca4ff46fb1c06ef0f936fd85c587a3775235752d7a5795e745d2c5d036c46d167fb388c4c13f7aa4a5b5c3f44d03c342e2

  • SSDEEP

    1536:xWuQyfJkZjr7eKA7bRZCF6Im99kqAtwmdjZMbXDbWkNpOPaWU4eSIq3eDnU1mk:18FryKwvCFvu8xjubXgPO4eye7Uj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8dee6e5e7f15a4dcd59fb7bc60572883.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ca80bd5a366748f7999937439bcc0575

    SHA1

    61ad8379ee6279c8acc7d977c6294a165cb47054

    SHA256

    995bf69f2e048216deb65821450fc4ae958425076bcaf043c1ad5eac834b0cd9

    SHA512

    deac35de2194976da761259f26c3fd881ac699275489cde610e549f9f05e37ea653f8b1e15d90ee73e6b48a619444fee17e2a94ffa155d88b5e90a257dee7df3

    Download Submit