Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 05:20

General

  • Target

    9893b05f44a7d7b61098cb599ba974ea.pdf

  • Size

    34KB

  • MD5

    9893b05f44a7d7b61098cb599ba974ea

  • SHA1

    5c73c92548ebdb1ab04357bd3e0af40d19a44dbe

  • SHA256

    d6e91c13d99ab8291af6b6c819341db5a8e8e0290d715393a9ae2116b5350275

  • SHA512

    222b88a08f80a5c3525fcc63633f2f44d2311fa663875b6fac675c3b78137596e12f47c9fcd199d9e03f604a6ac8135884a8f920fe80cdea2073004b8e8064eb

  • SSDEEP

    384:83+3CFeI2PwbhpVMo+4Qs69Zy7NCbnSOT758khLHxhpf3CUSJyHg1Net780p8DWs:83DewZMo+4Qs8ZyN+8ULH5V3psAc9oU/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9893b05f44a7d7b61098cb599ba974ea.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c9e55137ef0cf24a82ada9f6859e128e

    SHA1

    6f49ffa7f1e37b21dbcba8c9fa2097ec3f315d61

    SHA256

    2219e185b686ca5c2f2adfe6bda7d8bd20aaf531b06421391c4c94c01721070e

    SHA512

    20f41f4803d2da93e5dcd6c8b420042e08582617e817cbc06f346291088e6173b5187dd162a29215cbc04891ae3970a45f606c5d4aa2411a2ef382996e6d2b9d