Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

aa156ec860...e9.pdf

windows7-x64

1

aa156ec860...e9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/02/2024, 20:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aa156ec860b9ddb31586de8cf370dee9.pdf

  • Size

    86KB

  • MD5

    aa156ec860b9ddb31586de8cf370dee9

  • SHA1

    b7d4fe8ce330b53e83e28ae44525b9d4305e3e9b

  • SHA256

    ad77fd8eb7ad73b5a7ee50aafd36db18da96de5809f4020f4132a1344820c9a9

  • SHA512

    1a0a96d5ac3a219a2fde5eebadd293c3d82f74789fa379787c19082a51c06407d22dbee4c4b7fe838385a7ce0f7e7177494f23f9ce9be07f2f340208f4bfe5ec

  • SSDEEP

    1536:Voc4KSuXwOo/XUdI73q7RdSWV81Nt19yG5WkNpOPaW0/49Ymc7V3ndIG7t:R4KTw9/UB7bjm19yGiPJVcJdL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aa156ec860b9ddb31586de8cf370dee9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f87a180b1e92a4bb53896406e5a649a5

    SHA1

    213fc54bbad6e6b2d8b58308452b06f8681fb236

    SHA256

    28325eb41e1807932a36a7fa3872e948485a05ee2eaa75622cd13762187a524d

    SHA512

    f786da7b4a02c6926418e1d2331062722f7fb7bd99618abe2ccddaf1c459d341c3e25736d88596aa94df61525a2adb8b310b43b43f58c70fa6839f0056815467

    Download Submit