Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

998f294a6f...4c.pdf

windows7-x64

1

998f294a6f...4c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 13:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    998f294a6f3e792d86a2ec47c5a2484c.pdf

  • Size

    78KB

  • MD5

    998f294a6f3e792d86a2ec47c5a2484c

  • SHA1

    c4f5311209283f90b1735cf598856cefb0eaba45

  • SHA256

    238171a4ab9cb202fb4143135e3d6532101b0e8ba5ecd227d42e31b44635ad7b

  • SHA512

    2d657ede3701a195bb0dec990da0df4eacedd2f2e050a3596a024d39a3c96bf2960a621eb1086f16a9a5960f2007fb460b9734286bea34267c3df351ae92628e

  • SSDEEP

    1536:laUnNPqQNiMoNolp6JpYDJ/FydAI4asIWtm46atiyuPxW6pOu2yiu0AT:fZRca9Fydg9mBatiyaSu2I/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\998f294a6f3e792d86a2ec47c5a2484c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c852dce24425572867e5c32f88c66f15

    SHA1

    62764023c1ee086d6f80053077160a42d157f5e0

    SHA256

    acbea7d32f9e1e6944b19c8d94f202eedeed42095697783d34bb714f634afb3f

    SHA512

    663df70113a53cc1f48469695c0c0b31b1c557a1723ba532a82c4eb4e2e2ece473362a936d3417e9a0dac17fc203768c7d4b63a2902ac18aba0fb3f8c4eb0acd

    Download Submit