Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

8fb94bad5e...d6.pdf

windows7-x64

1

8fb94bad5e...d6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04/02/2024, 17:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8fb94bad5e0139bd4f07cc78d60565d6.pdf

  • Size

    93KB

  • MD5

    8fb94bad5e0139bd4f07cc78d60565d6

  • SHA1

    fb709c56274f07dfefe7c4fd1f2e9fd5af8d7ba9

  • SHA256

    42832f2847966276267d706f1384b257762302a2eff941a30a44e9ed0d018f98

  • SHA512

    ed37c769006d5f56a91de43869fc1fe3a30c20bdedcd3a67d8bb5bd8bdbc8794039cecddf80df7794123819378cc38a761f73d59bb18a82b93c9b00997a21d13

  • SSDEEP

    1536:t4GRzZSKT7YgRP2Au8Cwqe/dYHfyJ9HubtVUDAWkb403DW6pOu2qFXyGTae3:GkF/TMgFbJFqe/mHmdsVlFIu2iXyO5

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8fb94bad5e0139bd4f07cc78d60565d6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2a0b99e70be36bae15fbf7320fafbb97

    SHA1

    0e8814f171464e8eaf6b3e2a41aeee78d562771a

    SHA256

    4508d6e092f4179a5e7db5e524508ad8e3712c3e307a16626c113a3b34622ad7

    SHA512

    f97d92729c4397ada28f6f71ff90c1ecbb578f1f16c4043d39e163405fd0da5dff033c43c326bf77cb063bdc150327ae7494f6a3906eaac4b626e7134af899ae

    Download Submit