Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ab73e29586...45.pdf

windows7-x64

1

ab73e29586...45.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 08:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab73e29586a138705f95f1e34e166645.pdf

  • Size

    42KB

  • MD5

    ab73e29586a138705f95f1e34e166645

  • SHA1

    d8c5ed6233bd8ab76760fe3f90f82a2532aa73ba

  • SHA256

    59aaa6819b79cfa6613ab81e54957aeb4822db7258f2d2a287f541907508898a

  • SHA512

    cc1cd502122b424a475719fbe0374b11e29ed351889042d1a068fdcf6e196380c007e4cc7bed3fb9aa7c5c054e9e4c2fdabff41df55cc8e2600a07decba3c842

  • SSDEEP

    768:iuMwf6f/p2bGEzqFL6F4GdrW+KHpy6GmS1HiB5/IDnDD3V:UgqqqGxW+YdtB5wDnDTV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ab73e29586a138705f95f1e34e166645.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ff88ec0e7f828498b2b5012af486614d

    SHA1

    bb3cd12d626769ba1318591e5a9b2b9e453aab2f

    SHA256

    6cf8c0f87370fc8728e06a9abe7222f078ae96c597e881a2013da97186bb17bc

    SHA512

    c31c9b0ef3cf629d9be06e39ee72c473fea822f6685f521965ad3dde4b338c7f3f5fc51ca200719ecbf83b2f73a3c2c6777f19d5cf90dcd86163d86b39ddda67

    Download Submit