Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c1762136d8...b6.pdf

windows7-x64

1

c1762136d8...b6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/03/2024, 19:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c1762136d81c015196ada188dcf101b6.pdf

  • Size

    34KB

  • MD5

    c1762136d81c015196ada188dcf101b6

  • SHA1

    99c5dde6d763bd291317a1b7360b78723c0404a7

  • SHA256

    420ef28c71c4b548d9172f7868e16c14846ac27369568051d0d9fd1b8e2942cf

  • SHA512

    1b97af097f4c37831318dd172b9dd0712ba3378fb8fb35dd777bb22b97811e691b9afcf9d8c1cbfb63eaf9dbc54d183cf522fb8b2866fbe06606a6be728b8e19

  • SSDEEP

    768:ECwE0TSQ5bXs4t2pBr062PNGJSYauRMoYqWlS:ETPT92yPNG3aCMoalS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c1762136d81c015196ada188dcf101b6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    964a95b6b8d90e7736f90b347d0cc051

    SHA1

    729c2674ef9b7930eda98a633e9a788e8c2b401c

    SHA256

    ef070a919edbaa6c8ac2eb1e42e752ae58fe8dd36fac0bbb8b9d62bae5836f99

    SHA512

    c35cf3e7641f244a925a4a230d62a7b6ca060b715b9ede6e44653b7cea99487c43a703c987d7353611bb5ad9a51053d2988c4de90a59b5f330c1b5f6ddb3c1e9

    Download Submit