Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

99ce26938e...d0.pdf

windows7-x64

1

99ce26938e...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13/02/2024, 18:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99ce26938ef1296a3cdf8635286a1fd0.pdf

  • Size

    181KB

  • MD5

    99ce26938ef1296a3cdf8635286a1fd0

  • SHA1

    9e93d95311334bb1acf14858350ddf15cff460e6

  • SHA256

    d75b3e3837d91492dd5403c79e4fd9cf6e62103b60e48b2777d6a8abb6ad7f37

  • SHA512

    87f0a3e40e381969039fba73f441f45005b66881c83849920d46801bbdc1bdc73c836cf099d79ed3c684e82611c1b22932dc5c0c5a5c4295aedfa95a8be24c69

  • SSDEEP

    3072:TCBjtoj734JxtAuDOFLs5QAMeVM4IoUhiisVfmRaUu2NqL+PV4:OBjtOIJxtvDOFEQyqjbRatLEa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\99ce26938ef1296a3cdf8635286a1fd0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    78306a76436af5fa6609115016ff13f2

    SHA1

    5fe4d141904ff3528350075541b0dc2796275c40

    SHA256

    1551863787cdb99c43dc666a0bf040c01c894bddccbc38c076d81d73f901a632

    SHA512

    0da70127975538732447122c22987106679e33219d82912e2cad2ac4048a6080e615e960cc1a31f2c6e8520e9f185932fda51520dc6ded39daf79c282514f7b4

    Download Submit