Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/02/2024, 18:11

General

  • Target

    9c5136dc99daf23f2cad57b9804cf5d3.pdf

  • Size

    67KB

  • MD5

    9c5136dc99daf23f2cad57b9804cf5d3

  • SHA1

    41614884862a002fc905398d91649d60ca91b35d

  • SHA256

    89883671f0696387a183d3bdc91ff83468a33e6d637e1cf584dea823249916fb

  • SHA512

    83a073b804463cdee19bb1bae79efab365a582f0d47834b541ca5ec94f5706ccb17cbd00a622a2e72ca961d59104ed76ccb2ee5f503afc47206726c577edc59c

  • SSDEEP

    1536:KclNV9IYuBem9v+h5vM/hvwg/4DvKZ2LtwKzZE+vYamZ5R6rwnZkOxISr:fVza2h5E/27DvF9zZpXmlGOxX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9c5136dc99daf23f2cad57b9804cf5d3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e0f80cdc6e62475737484d1e59f70caa

    SHA1

    67597e4326e5a6629977b8f22b536962218581a0

    SHA256

    99653cceca254083863f937d11ebb33630754f33ce6302c4941c454d5da1c5f6

    SHA512

    f5ca1254fc648dc38874aa6cca32043adba06ed378b2daf405a0826266a31987c70bade7a225960b49c1a682d73d2eeba3f70c4c4ecb7bf56f3848d419ac5088