Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ba56aaddf1...24.pdf

windows7-x64

1

ba56aaddf1...24.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/03/2024, 02:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ba56aaddf16391dda9d35c04428d0224.pdf

  • Size

    46KB

  • MD5

    ba56aaddf16391dda9d35c04428d0224

  • SHA1

    05a83b53ff449090ca43aae538bca8af614cf1ba

  • SHA256

    980710fd3125d0b62571b494b800c56d72cfe6f75183b7c9c47e3be3687937d6

  • SHA512

    1ce205d7b64767b9167ca28b07f057a8684c3e06cdad85f07da75d480336c3f85e6141863ee5155d7b0c1e029a4c135a502dc3dc61b955f43c342802965eb3dd

  • SSDEEP

    768:mHJzi5DkYieZuVvkpDpOyeyuBWBUxk9DBi2/+bZ1lj9WQtR:gJzi5Nt8kIlWBUUA2/+bZHj9WGR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ba56aaddf16391dda9d35c04428d0224.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    23f5bca107d3e2570a6a59fe2e9a0de1

    SHA1

    0f0933a1e4faefab827689585686156ff0592c83

    SHA256

    fe2eca6e26395594cb136ae802bc411c260f201ae6a8952a203eb3a7b3de71c8

    SHA512

    f11d1c1d0b04888196efb45e6d07ff8bcfb9d51e33e676172a17dcd7e8600d061563fc04cb748f81f338fb99ea0766cdebefca87f409af7bbfebe4eab3e4e9e5

    Download Submit