Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

a2c065844f...ae.pdf

windows7-x64

1

a2c065844f...ae.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 21:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2c065844f36b4aea087ba749dbfdeae.pdf

  • Size

    43KB

  • MD5

    a2c065844f36b4aea087ba749dbfdeae

  • SHA1

    a0975bbb04c667010a1604cf29e4ece1112803ee

  • SHA256

    e383cab4c27aac0283084bfaacdcb2652f780d185e10138bb1333ee49f21f531

  • SHA512

    9b6c8c5d815851d56b4445f9e6a5a42cadb202cc103261fa74b047be14fea305a98ed9dedf774b9209187bc3441d709134f8a7a188c81b47b63655509212b6c3

  • SSDEEP

    768:7EEJxcU86VLNa6iL5sw9rOz0ptqVS3gwfzH1QCtD+AuO:7EoV8Qpa9OQpwQ3gwfx1tEO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a2c065844f36b4aea087ba749dbfdeae.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5443608791c6ad5104f4dd0234afbff3

    SHA1

    2cf818b0aa550571cf0b1ae9aa63237bebe9cdc1

    SHA256

    bab002371a05b9a191aa00e2fefcb6aca562f06162ad21dcb364cdb170b4e5fe

    SHA512

    49e359a8a67a1e144e2649583f46ae2557ec0db95ca24b4b022c9d86247b4b5702bf4591af86b1c4e500a2ff6539b46ddb8ead0d108e21e25e68004ba3e8a74b

    Download Submit