Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b44bf39238...67.pdf

windows7-x64

1

b44bf39238...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 08:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b44bf39238e5118546e3c34440380267.pdf

  • Size

    85KB

  • MD5

    b44bf39238e5118546e3c34440380267

  • SHA1

    3e286198448fb91b4f09aeef0132f08db5882eb9

  • SHA256

    b06840d0e2d3ae8cd8e8deaaaaa9fbd7eb93685ed540303bab22fe14080590b8

  • SHA512

    9099737ebcd70935100629b65a936b11c06ba95ab2461c96761f39b91f3720544cc3edc85d7466018c51cf7ee58a379051856267d8e09b54cbcf36aa7d302624

  • SSDEEP

    1536:a1eyQ0YcE1z+kQuNcM84DG3vYxhG5nwWl32B7cHiXmWOpOwrHKYJydQd:oBQRyvuyM8h3vVBHkbwrqbE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b44bf39238e5118546e3c34440380267.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1952

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    14f464ff5354d2847b4d47683ce17462

    SHA1

    ad173961b9f6022ea2315271f462a710d6a33a84

    SHA256

    bb8032b94c99c910083eb6dc31b4fcd0c647ed4e2c21eab81faf73d8a2da06e2

    SHA512

    a9d47a62e1dd4b272122b56ef2edf576181da056392e2cfce39ba4e09265f3e6a91b5e009045bd30f1ef95891aa05afb5b9716e55502f19f3798f3bf9d132b2b

    Download Submit