Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b3ec49ead4...cc.pdf

windows7-x64

1

b3ec49ead4...cc.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 05:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b3ec49ead40d6a6bf48eb2f5ca4399cc.pdf

  • Size

    32KB

  • MD5

    b3ec49ead40d6a6bf48eb2f5ca4399cc

  • SHA1

    6ae9c9819f2cd2796d1ddd0f748786b1e59dfe00

  • SHA256

    f3082092501316767e72ff9c19e71cfe320f027c605cf6926a06f227d83ecca5

  • SHA512

    3d3188ccc1ce07be998df44ac7788e8db6ddafda13e109d0f503ff01864ac6d1a7108bc0f998822f939642d2a91c7f2461c35766ae691d60b8b081324747bfe2

  • SSDEEP

    768:9cMlGZL0srfse3O2ilzoEOdun1jRVKZOG:2N7QoEzo3d81NEOG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b3ec49ead40d6a6bf48eb2f5ca4399cc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    89ba0d47d5c67f90211024a10bdf1f89

    SHA1

    baddf12c1f5437bf10b31eff3cb02a8de856f0c8

    SHA256

    588d63d3efe2754a53c18c7bcbb428a8bc743f1b71422b5810030ef9c54d7dda

    SHA512

    5bbed9a4f6b8c0376c62ae75351bfb0f072e3d9f4c78c85ae6a572020d5fda7fba73c223cbef0e8454b6191c7e835935183258afd4ba2295fd63f80b3af6d141

    Download Submit