Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

4

Static

static

4

file-examp...kB.pdf

windows7-x64

1

file-examp...kB.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    17/02/2024, 06:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file-example_PDF_500_kB.pdf

  • Size

    458KB

  • MD5

    c7d354ff10c868752f1b032e5b0e55e8

  • SHA1

    6d730748d689f1c6c71bc5c5f7a5b1a65c533242

  • SHA256

    e83014e71fc8e772b7689a3f1c8628a2ef2852a1a38e31bddaf823615570e709

  • SHA512

    87ddcf3d987fe51c1dfa411b99e2e4a636cc828a913830afc1a80a854b151643d87da656de0b5baffbaccff2650592b27ae49407313cc16e6da1d401dbf71612

  • SSDEEP

    12288:Cl3Zb1OT8u8CEYgORJI2FS8XqrY5ANZqplXJ:Cfb1OTREZSJXBkY560lZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\file-example_PDF_500_kB.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2496

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    394f8d38c87b23309fca34625a87eb69

    SHA1

    17546d7b0802397bb2639a18be084215af77b38b

    SHA256

    da7778744219a2759aa3cec61a90a515bc67d8bb5f0b0f874dfd79d12c823d68

    SHA512

    1c0288da0e13e024f82d64546f70aa5d7d7fc95aafc009b1103668eb182eee0b45b9d8f67a905b7c3fe40e483060e80d7286cd31aa65cdc82ff505bdae4916e2

    Download Submit