Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 21:58

General

  • Target

    c1b4a372600d5b56508d1be6618816cd.pdf

  • Size

    88KB

  • MD5

    c1b4a372600d5b56508d1be6618816cd

  • SHA1

    f756e14236b019de781b45bc18abbdd62b7746c6

  • SHA256

    ef95b5c5ad92af0c84dfdb9712807472898583a4237d41097cad0dd2473c27d6

  • SHA512

    e0975580b715efba32a8477a8f65fc78d34811eafbba17a7466bb68a0c7e55c9e2f8eda6e2f62b6c64ecb973a46c090de9ebe89360c026686fd906190f432a9b

  • SSDEEP

    1536:Us9iduCi4UENGYay/zdbYxYlFhiTUTScHPJr+jEcKvPhv90E3U9pWOeW2ZC9JZWO:vMmENfLdD/hiTUTDHPRnLvPx6ZoQJbNr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c1b4a372600d5b56508d1be6618816cd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1132

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1a7c1ce593d6f9206dcbbb4c3be7f83e

    SHA1

    5f182050ae29afc0d51b69a81ba809ef748aad0b

    SHA256

    6d274016e8c36af5aeedd7ec303de279702b271ca641398d0082ecac01663787

    SHA512

    bfd58cb47ed4f7f27201b9d1ab512cec78476804f10d162e11ad54842991e542a520d2af75879b36aa43d785496409bac7fdc11cb82758b4dc3c05c067bc8265