Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 06:36

General

  • Target

    ab3dec967a3fe252fdf247ba3ba9b11c.pdf

  • Size

    39KB

  • MD5

    ab3dec967a3fe252fdf247ba3ba9b11c

  • SHA1

    30a025d1ad1e54957767b06cec64fe07d4cdbbc5

  • SHA256

    b5ba2de0592744257215327e11781175b25a9290b031ce12a5b942a0a9f8fd5f

  • SHA512

    df89bb9bd95c96fce47792c3fd6b7d3383bcb0adf38f4a1411e1a918458a248dbdc4dfae9d94fb98f32b8b3ba0094a0556008c1eb8759e19657e12fd4fb8e2f6

  • SSDEEP

    768:2gGzpDweHq2r+/Ib7UwhzyrGIG4hbhJmXSV17IiheaWCsyeOj:jGFseFUwh+qIrVmXSv7IEeaWCsyeOj

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ab3dec967a3fe252fdf247ba3ba9b11c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    a63a847c44e3c13e8469d364fe85ebb4

    SHA1

    199a9fa8ba7bd0741f80230b325ab8f8c312a3f9

    SHA256

    ca1ab238da8415a3168a738e074591e3b7a2cf775f39b787b3d8a02e7785222d

    SHA512

    97fdef79fa63e10fc5fd7ba2260663c699b79281885b4d4ddb40c1c4a2e40faef484b74d2009870e19b69c6d519e09b63dc04a1c8aedd6122d31c4489b0f4fd1