Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 23:57

General

  • Target

    97f303304e421c3b21d7b2818f628781.pdf

  • Size

    70KB

  • MD5

    97f303304e421c3b21d7b2818f628781

  • SHA1

    803b9d7570e1c8d703e244c61700061d71f15c0e

  • SHA256

    5fc8ad8e59cd87869f4bde33427621e5de8940def2f08d6b7e84fcaeaedfca51

  • SHA512

    1ef5a98f68fb342c99019840ed029eb8df27c905f78feecde7fc35a5d215b9d5c99d854c409263f06772d6c77cfa14bd7458f7228c708f68fe627d50e31a49f5

  • SSDEEP

    1536:OlUW2Ox6H+XjKhMU0mEpxeAhkB6DGkqMSJ5zEabvbYFce5+xp93h:kBseXtz1xeADhwPvbecE+x7x

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\97f303304e421c3b21d7b2818f628781.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    54eeb082a8cafc19aef80afeaab8f6f7

    SHA1

    92be2898c348abc1dd0af03074d5303f29124d8f

    SHA256

    d0010c36d56da59e5a4f3e377706803985351f35110889b8ec24c04a158d90ac

    SHA512

    d7dc56c11a638cd53c3efaf6e9370334301b3c50d8a79f03d167b038b64d3fd61ad58e13660fa568306d9758259df10c2e8cf79fa27bd9c05d55416f45db19f4