Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b5e6552154...a7.pdf

windows7-x64

1

b5e6552154...a7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 23:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b5e6552154e024d9fa6de92adce48ca7.pdf

  • Size

    77KB

  • MD5

    b5e6552154e024d9fa6de92adce48ca7

  • SHA1

    ce960c502e72a62d82e820b50172a53bd48b2595

  • SHA256

    455e727c54ac52691078613b9083689abd69e2bfd9cf1cd96faca6a80dfbab73

  • SHA512

    f49b2ad971a6cde5d41df9afc110b69ac9add550c12fd34023ebbb9435775e1762b07a99069cc9f34ef8fb1e3edd4bb5d33eceea81ff781c09ec2803e2f403ed

  • SSDEEP

    1536:BeAvkyREdUrbWXNnbT6rXNRZf9kS388grLn0T3+GSaTOJEgWoIewo7r3h:TJ6dmC56rZKSDgrL0TOjaTpow2rx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b5e6552154e024d9fa6de92adce48ca7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    680867a74f290b3b305ecbe7da0e9f29

    SHA1

    c01b533b6df9459993c1ea52cb0f82fb9294cd89

    SHA256

    446706e719fc20363001102431b6e9ae9ff65f1eced782ba6672c144b396ab63

    SHA512

    5fe736ed70b1a48fe2440273ab900e1bbb107f1b2e6ca8f6580810c43592fff628d39c98a60f77e5ac22968f48bbcc459e5710bac44a0da19bf87b051f615d47

    Download Submit