Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/02/2024, 12:24

General

  • Target

    abdea02f15e9499131aa24ec75dbd5dc.pdf

  • Size

    90KB

  • MD5

    abdea02f15e9499131aa24ec75dbd5dc

  • SHA1

    c767c5b22d03d93d5455a1d523a1d90dfa31c305

  • SHA256

    93bcbbc47458ff03ada1967f218d673e4c03ec8a45e0b2a99878c5697eac9a72

  • SHA512

    a2674a0f2a308ed50d38aa546aacae9d3bd4c1352ca4d0e86a168918110df347a8e2cad2e9b73a41c79389e57b66d9d996a62c3161d43cebf207ac1b5a714493

  • SSDEEP

    1536:kZku2ChrqU2IeWodV7/EHMVV11+hkrpaKPqYvn5SYZtELEJZWtNEsZWbpON1QS:Wku2oqZbLEsV146tbTTJqasbNH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\abdea02f15e9499131aa24ec75dbd5dc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    dc991c94dc725529d597c3b31491859d

    SHA1

    8a0a451ea60895be95c1622d701eee874aceaf44

    SHA256

    ea9ab4bdd163d4782eb4b6c975816cbae2f2c08c65f8236e3f62a3e8d1abae97

    SHA512

    80c091116a587b14c2ab57acfa378060f4a3fdbfcf59fd92c7095ea6e4b3c92f253bb2a772ee1c6d7c643faaef732d43f5ad1ddf7c91e4164ca5bcbc789ae456