Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a2960e8e30...7a.pdf

windows7-x64

1

a2960e8e30...7a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2960e8e30ff993cff413ec84709dd7a.pdf

  • Size

    87KB

  • MD5

    a2960e8e30ff993cff413ec84709dd7a

  • SHA1

    df106f20f1ba18d117f89142c1126fa3f7694f1f

  • SHA256

    f8e00a1e8dc86ab960a1df821446c8333ef37afff2f7e5f80c16c312d9520f45

  • SHA512

    bebcf4a154de6608b76afd8a93950ba2930040f8df8e214fbe399f5d92c265f2ac6998637f4cb5fb93f2c7d48805bb439ed980e22bb84f37cffc855a2b7f8f8f

  • SSDEEP

    1536:CX7BvCdaNxh68n7x8eK7985d/JQTTjryw2W0uWXPCqYjWBWOpOwr8ifi8XWfoJVA:s7JCdaz1n7xtK79Gd/mTTjryacCqb+w0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a2960e8e30ff993cff413ec84709dd7a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    56d774539456b3d0ee4e0906082e5f9c

    SHA1

    34ad4f7e5d9f9ff21336f42d8e9d479b384ca033

    SHA256

    4aa3a097b099e8c1486b409152023652de58c4425d6b22af0bb587153fd7028b

    SHA512

    106ebba8ba39559e7ffd507a8e7e517ef01789de70415244cbc5ce09879172e9576fdf990740b80c109c83a794dc87635d754167b735ecbeec061942024621a8

    Download Submit