Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b9689c8c5d...dd.pdf

windows7-x64

1

b9689c8c5d...dd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 18:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b9689c8c5d213c8fb061f4012ad295dd.pdf

  • Size

    72KB

  • MD5

    b9689c8c5d213c8fb061f4012ad295dd

  • SHA1

    589e7b7d87640e6de46d825a9c6e6decd776e34d

  • SHA256

    03457fd6c03d0d1211f12536ee284a497a476abfeadd59132d1acda3539ab223

  • SHA512

    7606024a11f522eff8f9693e529afe8c54661533684da00c4b968d280f758faf2027a0734ae159579f9007e22442b6a58c7537f90db72a085337a792c1219558

  • SSDEEP

    1536:z2rJVU+qbHmFbM9fPBEAjVI19WYpO2+WzDgXRJKdcgyLV3Jn+:eJq+qbGFbM9fpEAjVIy22XXKdcgyx3J+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b9689c8c5d213c8fb061f4012ad295dd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2e2e23e049890ac797186ac12fd65cf3

    SHA1

    0496d5a59228e83e030a34504b5fbcfe58b54f83

    SHA256

    6f1bf5232281e8f579e2648f417ace3f0081487e7c4442e93e0625fe69f8aafe

    SHA512

    5baf572edcd41a37b96aa42344fa2d53c2757a50b7a7d3692a3fe837ca7eab9d6d607fd38113c694851cbfd601bc647b8f32cf8907a5134ff978cc9e8e2f055a

    Download Submit