Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

be65850d4b...e4.pdf

windows7-x64

1

be65850d4b...e4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    10/03/2024, 10:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    be65850d4baea50bea98c82136499fe4.pdf

  • Size

    87KB

  • MD5

    be65850d4baea50bea98c82136499fe4

  • SHA1

    d1fe390d517aec65bdc9a743f9244f10809cab9b

  • SHA256

    18e77b82e2b57a270bb7f189f61857c471e6ad896492eeae3b433445c95f810d

  • SHA512

    89069231651ca8eca34079883021ef03edcfc9d7e1c0d46fb49cac390f465ea556038439f6ef4d1112daaf46e3bbfe44ced057f047cb4143544c7f7e44fd908f

  • SSDEEP

    1536:W6YA2AecJLQsR6HjhUF6YgSKA8jNQIzR8gY/Ysqpte32XvGATGkwWapOtQHWUbqI:lYAN3Lx8HK+PJaIzR8FZ2TptQ/qEReD8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\be65850d4baea50bea98c82136499fe4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5d13a5c012ce77b9111fd1fb855e5da3

    SHA1

    de17589895834b5f1764fe38a3e05274966ac7d0

    SHA256

    53a54823fa98123e7a7370ebfdf17adb1a8c313f5dd850d58acb7e462fea54ec

    SHA512

    d8373cfd55d923568ecb77bbd9ed0fccaee66a409b03c5aa5ff1039a423a74b89137f841f3b254ce9d26f047178c4f328c6d5782f520a10f1dd22ffa72edfffe

    Download Submit