Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/02/2024, 08:45

General

  • Target

    a35b2197855993065b80a11db6e2fd41.pdf

  • Size

    93KB

  • MD5

    a35b2197855993065b80a11db6e2fd41

  • SHA1

    c9905daec8482ce85b75f945ae7a2a38eb6d7ea7

  • SHA256

    9bcacb6cb563c930050c337bdaa06246ba2a4e8d524da3c7a3264ddfd7bccd7a

  • SHA512

    5e1c7df990315d62e0887ff3f59597eacb3e2b0a1c2b614e49a0cd7d233ca28c363ede939826238b44bfe35a5b0def829c6f8aabbc91d9042349db251bf366ee

  • SSDEEP

    1536:fHA2OOk2W5sPhYJekKq/XG/IcQa0NwPtR+BtIIOGfKb8qSIueIEEWmpOSLWTxHV5:uOkNmhYnz/XC0NwlUBtXjyb8HI4E5SAd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a35b2197855993065b80a11db6e2fd41.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1224

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    861f5354161f4ce0e8bf4bdd1813cfa2

    SHA1

    02cacd89a303894323326c4fd63fde9888d69f1b

    SHA256

    ff4c2ef5d199807780146f4f8ad375e24b44b89e3ad52fa3f166e0e7d1535c1f

    SHA512

    1ec0f5d505d24189aed7144304113260231740372130bdea5b877060d3b595479a26e805037701f11a3f29e1c735eeecfcf110b530acf19657ac42700fa2bcba