Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

97a5d2f2e2...9b.pdf

windows7-x64

1

97a5d2f2e2...9b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 21:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    97a5d2f2e267bfe817e10e4f48ba059b.pdf

  • Size

    87KB

  • MD5

    97a5d2f2e267bfe817e10e4f48ba059b

  • SHA1

    d1ea7e297461f1b7b6f3183fcc89bfbee545815e

  • SHA256

    dbe430a7caefe5ec2a43c478ffd4b3f760085103c361497e953ba83e45b33197

  • SHA512

    93da74deb6d05914eaa310199e500a8d99e9ce43e8059066b7b6650c802c18239278f86301c55c16e9dff65c0d73570ba132092659d9c8a5cb9e36d19083f3f2

  • SSDEEP

    1536:TaHBGI5N5xq/KSVTi99rvtv48TPKqHsWxYq4qg4vdrYCKVWapOnQ9o:e0PHVi99Zw8TPXHtYvqg49vKmn3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\97a5d2f2e267bfe817e10e4f48ba059b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1668

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3073f24d24ecd766e9b2eb8b021aa5c3

    SHA1

    38836c8fdba291b7af7744e829d4c045d2debd77

    SHA256

    8e581f487f3c027167f5e909a36e4a6610f8e591ecfccd8da314730dd0a39f2f

    SHA512

    18c4d2ebc94da14d280763201b32263e2fefe4c0db5e943fe6cdc2eccdd83ff3ccc16cc484120a0c6bac70dbd4839ca64a96acd2fb7a068108cbf84535275de4

    Download Submit