Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

bf44475172...96.pdf

windows7-x64

1

bf44475172...96.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    10/03/2024, 23:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bf44475172da4629c90a9d04f137ca96.pdf

  • Size

    36KB

  • MD5

    bf44475172da4629c90a9d04f137ca96

  • SHA1

    db3e242a6fb43916e00ef33c9770ca771cb8f385

  • SHA256

    ff0ecf84fd6157dc8d3ce2243834e271e63d99fde1e2b051ce8f9d1527d2473d

  • SHA512

    f62bee0e09ace321fabf8ca097ac0084fb787079db3b925d165eb04a97589310d5352021b281b9425b6ee70060544233719b42822f5033df81cd971b07afecd6

  • SSDEEP

    768:k6whPB7u5YkqddvPb+C/BFfjjb0F3cT7qeKX6QuBg9WkdE/FoVpgqo:twn7uBqdsCH7EGKkKZWG+qo

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bf44475172da4629c90a9d04f137ca96.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c6cd88048ca3d339d2df28b19049efc2

    SHA1

    342772d6ecde8c201d1b881ccdbfd7ffd2abcdd6

    SHA256

    5c36e6e03bc53c88eb1855079c1036860a8855754acc810c30a691c914308c03

    SHA512

    924e8f44158be17b25e6abf99ca3da288f6c3076b561ce146c743a814b4e54fbcc98b2b6a03431046e819c2545388a7ec9583afc98d70857717f059dc4fe2149

    Download Submit