Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b589e99b2a...d1.pdf

windows7-x64

1

b589e99b2a...d1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 19:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b589e99b2ae22405ace9831e5a9589d1.pdf

  • Size

    99KB

  • MD5

    b589e99b2ae22405ace9831e5a9589d1

  • SHA1

    897ad8492f1e30b507118cc8343b2d2b774447b2

  • SHA256

    90a99d331f1a3b868694b72e057740f2cb2b4cd547919fa82393fe7fdf543be4

  • SHA512

    cafb4a192284692ea2d790b8ec4edf0c8efa4f44f9c34f8392ad3c86734d468dc527f6589fc786aafbe064273e4e9563b9cf36fc672bd2c50810ac1399eded63

  • SSDEEP

    3072:OlDzuBHlhgpp/2WWsgHSaA2sF3VwK44n2V/U0e+0U05dm:WzOgbe53W2sF3H442RUHw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b589e99b2ae22405ace9831e5a9589d1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    07a1ffb02995dc1f12835d9cb569d903

    SHA1

    22f270ea14623481619e863fd22c09f1fe805fde

    SHA256

    b07ce81ee6dce9cd92202584a7eb018be0864dcff46905c01c68945343041ea2

    SHA512

    83f51c1d2ad6f7d842bfeec4a42e8d58b6fb57d6754e1364c69d31d62f379faa90bc9e84c5135095ca8dad25244ae95b71db933b67b6193ce5ba390ccecb4ae4

    Download Submit