Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ae1a3b5c08...62.pdf

windows7-x64

1

ae1a3b5c08...62.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/02/2024, 08:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ae1a3b5c08aaa7e60a16d7de58d4e162.pdf

  • Size

    36KB

  • MD5

    ae1a3b5c08aaa7e60a16d7de58d4e162

  • SHA1

    8a9c530ae1d676f9030771e6129cc64638acd479

  • SHA256

    7e714ebd4f846d5282dfc1a34c4b7d3f14fc5d2215fe7ec04ccb48824bed5643

  • SHA512

    a84adf0402ecf84ee34e3a79c31a4fa35bb99c6b22838d55a40e3aa982314e966d7860591420b67679ed75ac5be5254582bab0d4cc56e1ed2c09d4702869a7e0

  • SSDEEP

    768:d+qf50LEsKadlNK6OCwRRknQDgrsm3dbuxZL4ZaiR+:bf5Ywadlj4LDDcLdbuxZLo3R+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ae1a3b5c08aaa7e60a16d7de58d4e162.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    234b52ac36a6caecc1931845daf80361

    SHA1

    18034409b503a4770f20e034e052ad436a45d256

    SHA256

    b1b9d170d54dc26204eaabd1f77e06ba594adb3a5c2ca706b8030203fbd37344

    SHA512

    b921122b7d142938036bc380b6f7c0f8c044b6c9c5156c9ed1a90e01da4f2622b92308ad677717a16aa957d16486485f15728e0af4378af29439f2545eebf6dd

    Download Submit