Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

bcda71ed7f...01.pdf

windows7-x64

1

bcda71ed7f...01.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/03/2024, 21:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bcda71ed7f45bcf910a4e79c7eb8f301.pdf

  • Size

    86KB

  • MD5

    bcda71ed7f45bcf910a4e79c7eb8f301

  • SHA1

    f5a25a2c6f78ae4f8e98dc9f895c997e32976537

  • SHA256

    18e847be2bab0d87fa94095ac57bbb86e65ea9db67a6a1d593a4c71ebc0bd5c5

  • SHA512

    cb03c2ef4f8a5eaaee5fec76501f5c30ff0f2464e37c264b776e2697061265ce770263f2b66f0adb2782b31b3b589f8187973f9d8185c8af6a4790c40e063922

  • SSDEEP

    1536://wPx1cq+mop2UUpbAPTKk3CirdaQ6iprBiZ7dlQiWGpOKCWqigbUyNUYzap1:Xw51cB2UMbAP7BrdaQPp1iZUKLyNUU8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bcda71ed7f45bcf910a4e79c7eb8f301.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8f0cfa4901da214f617972daee105731

    SHA1

    e8def1f69666f78476a65f4fbd0e9ba73481d94d

    SHA256

    ed74fae4278f2e3d224d2039cf3b9d614ec970dc3b7d9b422bba4b322d45422f

    SHA512

    7afff5d6b87f324431dee1f6de0008b74146aec7dbef011a6c3f46a7646e3d8d7e583d091051947e13f402fb2ceab1bc1c923a373fa89b9a11b251e1550d3025

    Download Submit