Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a079c9b240...36.pdf

windows7-x64

1

a079c9b240...36.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    23/02/2024, 22:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a079c9b240eaa4c8b40f33bebc18eb36.pdf

  • Size

    70KB

  • MD5

    a079c9b240eaa4c8b40f33bebc18eb36

  • SHA1

    ea5ba1f9bca75d2d33ee7e5c0cec1cf583a015fb

  • SHA256

    92e83f94639579b0917895e9db3aec2d2bb8ce4878bf1e36e4040fe75beb3d9a

  • SHA512

    c07a33664cb2705920d2ccb239a3e91027cdcfe659d7a69a8c4241d52347621e9e4092f48e15394ccb7794f1865807509ba246ddcec337d379bb668f46ab2e26

  • SSDEEP

    1536:omJ7K2js3yOvDkMyXbfLEZJSBnTjP/+KEg4jc5ExlIbspUuE5dCr:TJ2meyOvgMyXbsJ8P/+Bgyc5EzEGjES

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a079c9b240eaa4c8b40f33bebc18eb36.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2236

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7fe726a6024c03af5dce30c993cdeac3

    SHA1

    dfa07af1792ccf13354e6e2ec221c68a8d613c08

    SHA256

    a9781fb6c3e892fd737dbfae66e5ce4cc2c2fb8904886259b8d51acf96798046

    SHA512

    606eac325bb6348a67688e5d861901028d6b0f39f27eb2e4b0bcc85371fc0742ae8e2caef532d46a32aeadd0be28c38c09085f58f3c5614c6ed3f153316f0789

    Download Submit