Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

bc24afe527...dd.pdf

windows7-x64

1

bc24afe527...dd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/03/2024, 15:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bc24afe5278a349532187b8b81c7f5dd.pdf

  • Size

    52KB

  • MD5

    bc24afe5278a349532187b8b81c7f5dd

  • SHA1

    33c18a1b642473c5b2d9e3c9ebcfef1ccb2b89cc

  • SHA256

    c0354c14816666660b1338c7ee911d80fb774fe730d3e382204ecf1c46f385c3

  • SHA512

    dcb76fd0d36b04dc401fe06573c71b833d22be672922550f067979ea3edaacaf595d2b6914a9eb16a54a4310b45288cede67b8ac609e14d624a0c3a446115397

  • SSDEEP

    1536:FGFADvOwEbOXxEKTXM/KdI0bdpG01pKLWbQUIx6a:YFAS3buEK7rdI0bampKuQfF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bc24afe5278a349532187b8b81c7f5dd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1784

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4922914c819e680e7042a6ca10637c3b

    SHA1

    da758b0645e500b1013eb7e6bc65ee181f7163de

    SHA256

    2184b41762796d0988c41af77fc1a4f0f16aa892ab03dc56ff693ee77ddbe89d

    SHA512

    3722cef842562a886ea562985e83a92d3cfe93ca221a77b1351729785f49f27527ecb45949a362ab7a67dfde216078d4f0cd37b3f081c8afcb31d529c28f2ec4

    Download Submit