Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ab8dc803d9...58.pdf

windows7-x64

1

ab8dc803d9...58.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 09:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ab8dc803d9d5cde8dfe33d619b050358.pdf

  • Size

    74KB

  • MD5

    ab8dc803d9d5cde8dfe33d619b050358

  • SHA1

    399183d446b2a13eaead030d1114d4ba08dcc57d

  • SHA256

    a4763a5e9d94c69f4dda0e4df302046e655e785355d81e564156d816d2e1688b

  • SHA512

    f68b402f3f2fb60e8454cf7f6f8d1bf1d0d3d59343da9f111279b12ebe250ab18f46f05aec14771a0173be7cc5584468d936fdff13e9e3e1df27864cb5c558fc

  • SSDEEP

    1536:uWZzmltCIW3zOXdY4GOK9Kn00NMmdR2fWV1cYnqHW6pOu2VOYGjIC:ZKJiMWntkJNMmdYu1ceqcu2V/q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ab8dc803d9d5cde8dfe33d619b050358.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9a2daee66d3d851722c3767495c2abe3

    SHA1

    fdc6607eccac79d456d4cd51a05aa5f3883be595

    SHA256

    a9ef04ab0bb80f5455f8d9f8d0b7b1d43aaded51f32e08a9f250e265b9ca92a8

    SHA512

    dad87e601c372c41b5666d1f14086888ac4a98ddc81107f15ecffa7fe78cf5ab3173a00ffb678de752c650db8c97863ced4acf457e650c366aef31499bf397dd

    Download Submit