Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/03/2024, 23:10

General

  • Target

    bf33d81a0e949f570c9f8b71eb363f39.pdf

  • Size

    34KB

  • MD5

    bf33d81a0e949f570c9f8b71eb363f39

  • SHA1

    d0ba515b5c92e13f84e03fb3d3b23873e6dabd1a

  • SHA256

    fbfdbc5cffa96bd994f6d3b948d0f97fc8ddb8405f1b7efb210458ef9003c58c

  • SHA512

    332b268a24937872e168874436b13a771663022fe390c6245c7bbc8f7c0ee6e203c03a2ef056eef04f719b7f8cecb6c45e52e8dc315214ad5de2452328edce42

  • SSDEEP

    768:+JhCb7qnmXSSN9nfrymlFsvq1NoBqpDWd6QWVh2QATojl:tb7fd9neOGq1CeWQVh2QDjl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bf33d81a0e949f570c9f8b71eb363f39.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    27f6be350e797c5e5258218556d303e8

    SHA1

    549987afdeffc46fe615f7eb7b0a86528a863865

    SHA256

    e06976bc7e6ef22a2bad9dbb59f9ddf8cca3c94b1b393054888b6d4374674335

    SHA512

    75ec1902bf94b5483f61047ecddd1b822ff21bbc0fa3a4109c13a251e557aebe53fbc2927142df10fd47952da8f2f6dedb1fde6af3f2e53db345d81b67502b9f