Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

97987ae889...7f.pdf

windows7-x64

1

97987ae889...7f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    12/02/2024, 21:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    97987ae889c2fa8371a95d4e1c86297f.pdf

  • Size

    84KB

  • MD5

    97987ae889c2fa8371a95d4e1c86297f

  • SHA1

    49e53eacf10bbe96ee5fc7a701a849bbb2496bd4

  • SHA256

    5f0a5019bd904244aa4e8cc1111d59fe53e5a14d5d5503fd28a9df840274a1d5

  • SHA512

    5a06a98d4abaff378aa64656e816bb7c17b108aeefbd1042ed95a9280d52c424ba9e540a361b7817757150cf7bf9f5d42f1c06d919c7ab4ab4890d7ae5ec0d3e

  • SSDEEP

    1536:f9DmHhvJbW2kbFIOl0DQ5VuKZc6GSqWapOtQHW2IJSpp5H/O1PcQGD:FPVYGc6ZtQeJSr5fOyT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\97987ae889c2fa8371a95d4e1c86297f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3400bc02cbf93e86a4bd0e2ca45a147a

    SHA1

    73333b35ac3aa1431a29b25e2dd1fe679a999e92

    SHA256

    8289432a62e57948369278d4ee2b85872371ec6d8dce20acf6a1364fa832ff1a

    SHA512

    174813b59e50758d471b19cd77b67b12db8155b553609e11db86c8bf8013778e4ea638662e22fc90605c6330f7e2899dd92dcd3e190e23d829eb9ec0ec3d2c6e

    Download Submit