Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    09/03/2024, 15:25

General

  • Target

    bc25b2d830c7fae7914d54220d370968.pdf

  • Size

    83KB

  • MD5

    bc25b2d830c7fae7914d54220d370968

  • SHA1

    63506845c64a00318462bdc87cf2afc8bc4a1e7b

  • SHA256

    6c1381fc29d82726e91d2ea70a45bfa0ba3e7e6701e5f999c6e81408489f5670

  • SHA512

    16d30a5e35c844870746dbb41883b0e359fa58385368bddc7595d2bd67f310e1ffe8994bc57067fa235568bf75b95d429289b52bd002a91780a6fe83264173f8

  • SSDEEP

    1536:He2nXYF8ZMjJt+lsh1xYRSwluZ0VzD9f6PhrWm+i9dlWgoWW8pO77Kb/:BnXA8a6Kh1xYRcZ0VzDsJH+Oego17A

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bc25b2d830c7fae7914d54220d370968.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d22fbc2c6c7421e527b5c0fd87ea8748

    SHA1

    e9b1e0fb956153bcd7f0200165c4aef1c75b2c70

    SHA256

    c4dd95387137c799843f3e9f5ec886f936fa1494ffe0cd91b366b34ca4bd9499

    SHA512

    8abd7e2c71d93251c972b489eeef139c3234c77608d7dbd0eb8d1f5711c399b2210fec5bec5c238f9e64c2579834b529a9f752a57a537a92098a56419a32eedc