Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    06/03/2024, 14:02

General

  • Target

    b793f336e47b2edc5cf6aea89c6e3a37.pdf

  • Size

    78KB

  • MD5

    b793f336e47b2edc5cf6aea89c6e3a37

  • SHA1

    445841fe21301e6ea47499ed7a1578110e2a7179

  • SHA256

    ee78a196a35a6b31901f6265ee1b45c07becba7f72261fcafa56db9a796f63ce

  • SHA512

    3d0f4d13527d64d51edcfd1d056ab96c46de87cd7e5c9a55167e318a1af6a161815110a86249e58e14cd37bef34f037d78de6d33d64604429304e272a90d7fcb

  • SSDEEP

    1536:n+u1Af1lfo0mW1QVmpd2cjc+2JJ+WkNpOPzMqOiWokmoRt8D:6f1l5km6v3zjPz/O/moRm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b793f336e47b2edc5cf6aea89c6e3a37.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2064

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c74e90a9d9fe2ee838a2ba07699e5a9b

    SHA1

    cf1be4968e2bdcfffad5d4d9d57cd8b9178bf498

    SHA256

    a251e979e264f8654584740f89a9eb2ddf743fe050b485faadff06fb156cf610

    SHA512

    4c57226ddb1f315135a832d8a935bb06e6c091a6e9e031893e2aa2e001b83eab87534ac04d43f69f5be8c758a0a53d26a4fb353869288a7c1ec50fa64447c83e