Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c0ee7fd9d2...50.pdf

windows7-x64

1

c0ee7fd9d2...50.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 15:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c0ee7fd9d2b60d83b19bd859b3358b50.pdf

  • Size

    34KB

  • MD5

    c0ee7fd9d2b60d83b19bd859b3358b50

  • SHA1

    b923d84c3eff204086d97280ee530bae71e6658f

  • SHA256

    5e33d5f28c124b1757603450acc5b0b95d8f503eb280ac4a6c35ef2f5e15a08e

  • SHA512

    63b671f71812e42e746b58b236aa92d629d5dc4e4daae404fb4affc512728562d46dd2dba5bfe1a8ebd3414039f4e996ce7ca16d72b75d96b24be8c571d6acd8

  • SSDEEP

    768:wrPkFj58Lz26P9t3ezhxcrvzrzSsA+gus5qoQsBNtF/amrtpahQhZ2+uHe:SCgg4O/FSmrtplVuHe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c0ee7fd9d2b60d83b19bd859b3358b50.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2420

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8ce8e36f27cfd0c3900dafb4703cec5f

    SHA1

    30b5ca40357987ad3ba8aa661ff3dfed147da744

    SHA256

    76298183239f838e9369e615acfbc70ca405583a03454fbc89f6e31a26fefa5c

    SHA512

    db65632559c6e8ebbeaefe1b8cb412a3261abda39abb8bee436644c6ede5474a905a58b4672f3a2124122a29d21a959a3506cc4514048432322c6fbe8175b4e6

    Download Submit