Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b405cdae5d...cb.pdf

windows7-x64

1

b405cdae5d...cb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 06:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b405cdae5d2a8af8aeb02fc32415c6cb.pdf

  • Size

    89KB

  • MD5

    b405cdae5d2a8af8aeb02fc32415c6cb

  • SHA1

    d9d386ecb5442a4f5cda348699707b280f77be91

  • SHA256

    6806674d36f35db322fd2a8f2d730b5785731fa3084350359e375f91fd6a3b1d

  • SHA512

    992fa2a5b23a2f0439ce8dfd39fd9d4dc3ca8df4a7d344bab6a5811c2aabeb181d72cefa07ca77d88366fdff78de875ccf110695de82a145a0638ebc4cad2708

  • SSDEEP

    1536:i0UHSsHbrzJnjqMmzcMQMWnwwyaXYkj8MViyoBwb0N6GtaWN6e2GNPj:lUykJzFMQZnw+Ykj8WLoBLNTt2e2c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b405cdae5d2a8af8aeb02fc32415c6cb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e33921e6e98a8b9c6c83118751bc84c0

    SHA1

    1f9850968bc457636b2932c0f8f6e82f20f6488b

    SHA256

    076ceb0f9191971ffc8eea953fc4ca0053c1514d3ec32ab87f7ea2cc0f38129b

    SHA512

    084e25259f7396a7154cf90594c730bceb77b73906e17b41b6c10b81c4b3d5f7117fed27afa1d104433cc438598174a827febda9c490cc6c0844c7cdf5dd2245

    Download Submit