Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

b99b1d7da9...9c.pdf

windows7-x64

1

b99b1d7da9...9c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 20:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b99b1d7da90642b2f3312cb11819dc9c.pdf

  • Size

    44KB

  • MD5

    b99b1d7da90642b2f3312cb11819dc9c

  • SHA1

    696a86894f04699ec32efed4a80ac4174b0bf3c4

  • SHA256

    0b4047499bf84d51929dde23afd7d3c756aaf9781a8d9ea17b0de97db8b86e80

  • SHA512

    09bbdfe8b9045d3e702592c3cdbb1b332cbba73cb5b84452bda2e814abd17689fdca3a3a6e3a5e0d382cee4582ce07e35fb657be065d6cf3b35c89a021035f88

  • SSDEEP

    768:q76v0DNCeyPYu+WOH0KesDyUc6h0ggBkicQsPd+bEtmhpK8aLBn:qSPt/OUKesD5cca6QsPd+bE8hpAdn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b99b1d7da90642b2f3312cb11819dc9c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c9cb5335a4276337f7e3fc90ff795672

    SHA1

    f35e9ed1ebc5b9cd3f2351b30407ddbdbc09b793

    SHA256

    eeaa6ce61ff5c86d960cd0af8a47c70db22e675ad76832113a4bc0d31c1d25b5

    SHA512

    a6c4a88f138833fcd64e147bbe908186860fe6a3f79a66d255cb704689d50dbb5df2f99dc03c93d3e35ce255f42906e8df8e00f7370c518363cee89a63233ac7

    Download Submit