Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b4a2e419d4...73.pdf

windows7-x64

1

b4a2e419d4...73.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 11:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b4a2e419d493114fcd3c9363a8d06273.pdf

  • Size

    82KB

  • MD5

    b4a2e419d493114fcd3c9363a8d06273

  • SHA1

    90afd2fb19b043b0a21cb700dcfeb34cc6a3aa02

  • SHA256

    0520c06aab4674e8cd92502b4aa3c00e848c6a6ed38283f9e700caf83bdc12ac

  • SHA512

    2a9c2c56ae34bbe5a303ba5f20ba102598632380602ef909888a8512e8ad08dd46cc790f62b9af465b25430008752363d4506faebf5d35321c7f3ef672476dae

  • SSDEEP

    1536:mICkhSumRb2AKcnp3ni4GNNWE+IusWdNqxoFIC7WXL78CIWWstY0ScG/frWkNpO4:EkhSui2Mp3nAW7INWPqAIC7WXv6t8P/I

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b4a2e419d493114fcd3c9363a8d06273.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c7c09e386702b49ea81b5be9565fc209

    SHA1

    84e6708d608a67df82a1bf7e70cce1b6746040d0

    SHA256

    95e558b5efd4c66f32e42de5ac9c27cd3777d2ca076394a6d388a8a43a30ba60

    SHA512

    a20dad196cea55b17c2cc93e9161eee929bf06b95d3ff036fc5aa4e304be88192d520c3144d9f5ce97aee48a3abc3cd055b0f4fedc3ca229f0e330c0d873b940

    Download Submit