Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b7de5f4764...37.pdf

windows7-x64

1

b7de5f4764...37.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    06/03/2024, 16:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b7de5f4764ee1bc74ef3983f97ebcc37.pdf

  • Size

    34KB

  • MD5

    b7de5f4764ee1bc74ef3983f97ebcc37

  • SHA1

    c85c19ec168910a222399e4775046645d7edb180

  • SHA256

    2d2b3fcd39dfcf4e0a6cf227c2131ba1dea7847e41651db2253bfefba4ad3846

  • SHA512

    4aa3502a3bee4e3b47c66cf108ef1093348227247911c4cde545b6f6a0b369458819015e80e776dc197c88addacc21ec25247e9c9a95b378283db6d710dfd350

  • SSDEEP

    768:N63nyGrPBAU24vefjk8R7u8+cthUQp37KCt0Gb/BLh0aZO5vE:N4hBQz7ScrZZ+F8r0aZuvE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b7de5f4764ee1bc74ef3983f97ebcc37.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    eaa8ffc55695d8abea1a9ca412fafae4

    SHA1

    47227cfcc1827180e71d010a86dcb76791064a12

    SHA256

    a2df1072eeb9fb583471169a24a376f1cefd6e31abc95265f920f2222f2c39b1

    SHA512

    5cf035d38c966111148a4d97c9a053a8ca10e7984dc5bd017fa1e78db654538911956360780092af25259e80943aa8d63db0a45e05ff2abb227093d7df567dcb

    Download Submit