Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

aa307fd452...c7.pdf

windows7-x64

1

aa307fd452...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/02/2024, 21:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aa307fd452f4978fa85facc964118bc7.pdf

  • Size

    87KB

  • MD5

    aa307fd452f4978fa85facc964118bc7

  • SHA1

    a120dc1a2b7357c85ccd72ef887c0a023069d09a

  • SHA256

    393200e26add28292c4dd41bc85fce55b553db7d146e38f0a477a3997c1de28d

  • SHA512

    5500343e39f94292a9b7e82648c9f62e688abff00e0300b18dee0756573bd3fa7a6001196d0e81cad0a98083e4b4ebedaacbee6830af1511bd1a8e5ed115a4c1

  • SSDEEP

    1536:HKnYeetyO+zEtd8Zy+DaTa2dhDaepot5aQnYEsepL9kH9wQP924WapOtQHWfbgsi:qnOk6d8Zy8otdvpI5a6BsepLq9LP92hg

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aa307fd452f4978fa85facc964118bc7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1784d4b78942d0cdd4985c7f64c80c88

    SHA1

    de32a4e73d8657e676611591315fd91bef74c580

    SHA256

    993a75543f0bd7f2c6b8def319a62e3c8ae803e2f99f444e7e351e8d099eb02c

    SHA512

    830b92ac02ae54ceb44016ed0cde9941bec5c556fee31749320497b4fef74dd0e5eb74812cd311a93276fbdb607e9c54982838b4488fd4138d1104a25726f74b

    Download Submit