Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ad4878ac80...9b.pdf

windows7-x64

1

ad4878ac80...9b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/02/2024, 00:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ad4878ac80772b001c8d0c10a2ac269b.pdf

  • Size

    34KB

  • MD5

    ad4878ac80772b001c8d0c10a2ac269b

  • SHA1

    6ae3ec4aa327462f8b6301675a548a2bf04b8e8d

  • SHA256

    25e2faa9da851c640592ecc48053a4180ed0444adfe26776e2b519f663772f6b

  • SHA512

    23f7ac42db3a5325d6617b5c0d47d7ce59734d7c2729625884f6c36c30ab9f98fc91f0954bc98e82909bf392b3cdd63c90e2899fcf06cf1109f27df49a913e3c

  • SSDEEP

    768:8qqEMc082c4wsatEwn7hPX0qq9HYvIh8l:yEMcqYntcF94Ah8l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ad4878ac80772b001c8d0c10a2ac269b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ed7245961e1b90efada1ae64717b90a6

    SHA1

    450fad1bcb5af76142223abf89877c684d185335

    SHA256

    b7c13f9815005fbc37c2bbd7aba7c67153c6802fc947d0271424d64d9a459de7

    SHA512

    7a40009694ff717f28a0e238fc2c9429c257241c8ef745fb3bc7e17a028cb50149bbc93dcf06386334ab4a0288cce37f9f69fd616f8dd6289f01c5957562e24d

    Download Submit