Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b9219a5bc7...e6.pdf

windows7-x64

1

b9219a5bc7...e6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 16:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9219a5bc7ae56be4ea66d33d05fd6e6.pdf

  • Size

    88KB

  • MD5

    b9219a5bc7ae56be4ea66d33d05fd6e6

  • SHA1

    6547c037c67ef1cecc2527c90024623dc9eb5da5

  • SHA256

    d8d5a7e765d81272fe05646f98d08df2504ae0e63bfcd480cacb772c5b832294

  • SHA512

    4bf3cfde15dfc8b4b30d5b367d99a9fa34b16fcbcb888f28ae466b7eb4a3d25ece77680328d5eca82d7c14b8e46753c46f25a96136ca4848426a8a62e151a7fe

  • SSDEEP

    1536:SV+SH+NUVIrdr2hSwcb0aHfx0KB1A6RbqGQcDYhTc15moEcnsE0ox:ud+i2pr+nS/HpZ/A6VLQthTc15moEcnZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9219a5bc7ae56be4ea66d33d05fd6e6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3d3ff83952f08449ccd31765204a3820

    SHA1

    9a96d83322259f82e47fbb432bf289ec8f411f9d

    SHA256

    33f9108fc1d83fae830cb917f9008cac18ad9f7204d5a92bffe14f90bbd7990a

    SHA512

    8afad37f4947d7b37ba331167232ea0970e178d1272b7d5f595d27467c53c6f8be6c655548b93854c20ab5ee84aaedffe329eece7eee7dcd055a115b6f164d8d

    Download Submit