Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

aaf03ffa07...03.pdf

windows7-x64

1

aaf03ffa07...03.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 03:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aaf03ffa077c4d1ea7847435ce9bc603.pdf

  • Size

    86KB

  • MD5

    aaf03ffa077c4d1ea7847435ce9bc603

  • SHA1

    b9f60bd60953ab5389b54df76bb6337033e01db7

  • SHA256

    4944727c7850363c6758e4469485090ff753e563285f1b3f7e1bdf30a9513311

  • SHA512

    8a4c3039abc7fc3a02e9e211431e4efa9cdb9c00f62606ccffd38dcababd1c04aab93f5ff082692033a13726154238c8cf53e6d42721cc872c02e8463ba362a9

  • SSDEEP

    1536:CVEtli1+SUW5HoS9GeYg/0GxhNt+8NAtZ8iwb5IL7/WKXw7u6WspOR/0es:ptl/SpoIGeY60Gxvt+8gZ8iwdI3LEudk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aaf03ffa077c4d1ea7847435ce9bc603.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6f43ddf436ad35f8df582a7e4a17b865

    SHA1

    97697537d890a0b52cd0bbb29efab2ea7ab9b816

    SHA256

    5b1f16578f6d6dbb6eab2e74ea624eae7c8c3002a6f900e40d1e2c7d6ee69a10

    SHA512

    a8a109ad0ea8db3134ae0dc7a9dd691e93bfdb965002a4c95cd940d6ee6fd2422b4d9dd148d0ed3b99b7cdc1259c86a6cf1bb63f69d2fffe1cd88b3f7ccb1bad

    Download Submit