Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 14:28

General

  • Target

    976052e3c1c45f8fbea5943dbcf30576.pdf

  • Size

    88KB

  • MD5

    976052e3c1c45f8fbea5943dbcf30576

  • SHA1

    25c45d00a8d963986b750a49648918bf29107eb6

  • SHA256

    cccf2ece086526e1e3a42284b017b5ae178c7187e8f05de5d260f556cbffe46a

  • SHA512

    a594ca43c923e1f10fea567e8fd402f3b8fe3a8c5df38662b200ae6c2c0a7f80a5d091e71e0cd4802f1569f2068190d8d4eedfdc26badd6fda3da66fcf9b35d6

  • SSDEEP

    1536:qBKiYd4AMp9EHErGwbomVIdPrlciZTLxgHmC+W5rNPMw5hV8WapOtQ6R9UDd:gYd49pIErGwEmVIdPpcUTLxuew5XttQd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\976052e3c1c45f8fbea5943dbcf30576.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    657db32dd284ab0bbd46127dc92998b0

    SHA1

    42507750368bd552232e2e5b0c9cc28992f654e3

    SHA256

    20eec01adc02cbb4d090c276d5fee07796f0da1a7a9ee43d5d085ecf41f38f5c

    SHA512

    1bafc9638802e441855f31f875af9648273890acd34cf0b2cdaaf2dc1940b0cb17842d61e93e653a8de9f2a702971d1eb4e6ddfe08d92c2da937e8eb84921a92