Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c00f1262b1...1d.pdf

windows7-x64

1

c00f1262b1...1d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 06:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c00f1262b1c342e66f7f68665fbc691d.pdf

  • Size

    87KB

  • MD5

    c00f1262b1c342e66f7f68665fbc691d

  • SHA1

    266df265b00bf2f8992f8481ed4eaabe37a9aec6

  • SHA256

    cdd316ccf9c48857b772fa8bb5bc43e7d8ff14310fe29eb70867b024553a06a1

  • SHA512

    ba54b64f47bf6d8bf5d313b2a885a8bc230cd186d0760db051b55a3c2f9923b9e96efce4016671ab7e42e2fa221d1ea694aed4c2ef8ad95b6ac05de4d2248360

  • SSDEEP

    1536:9L4dekdsLnuatwjBVzEEvj/twNn3f+fp5Hiw05kmatosHuD4XB82WkyLUgkxYMdk:5AekKLnuaIzEEr/Gv+fppix5kHo8u0xi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c00f1262b1c342e66f7f68665fbc691d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd8dc29d961cc0da30a30737f183e1ca

    SHA1

    61b2e2c6babbee3329eca48ac00499aed19c63f7

    SHA256

    f2b53d81e8408fcafa7bf5230c9acb912a54d4ab1c48001eef7398862c64f416

    SHA512

    73bc54fab5b3ecc9982be2a8914bb3f145ad5a159d06f1a6ced7cdfb7cb3d7fce2ea7229288d1c53767f9d43075d324a4e756858e245183355ac3a74456b71cd

    Download Submit