Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ba312df02d...64.pdf

windows7-x64

1

ba312df02d...64.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/03/2024, 01:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ba312df02d9cd181e520a7b5d7d5ae64.pdf

  • Size

    82KB

  • MD5

    ba312df02d9cd181e520a7b5d7d5ae64

  • SHA1

    f82f35bc9655220db6fb11f5e91b8def272ed9e0

  • SHA256

    8ebcbfa5e558ebbc7819ec216f4ea620c4c5c768562cb0d91fdbdd467e7b93b7

  • SHA512

    bc753ee152ef1f70a5859d3b4a64fcb87e0472d391a896885c4c419de780753fbe922387a00dc6e7ce17dc37088200aa37ba0a2062f80e7ff51e6fa7bf305b34

  • SSDEEP

    1536:LgIw5MRtUbkoVQ69sCd8YeTgISzWMaaM5NJFZWLnwqVzWOpOZi7kP1uw:8Iw8XoVF9se8REIShM5NKnJVMZiQPn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ba312df02d9cd181e520a7b5d7d5ae64.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ff3342d709f41f05562589129cef18aa

    SHA1

    6dbd1329c11a695b7edccada53d350dff78f8af3

    SHA256

    0122651db89193223dad325fb83574de50ab11a9f8a292656e9e5c65c305aef2

    SHA512

    2f6225def47a2ee33f36086af3a3f04805e06dd14fcaec4d7bb8499e79af44693e1705f0dd5f0a99091f939b1c63a3809d87f70916c5d4e227b266d214a529e8

    Download Submit