Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 09:25

General

  • Target

    c3041c89adc2a113b673c4070408d303.pdf

  • Size

    88KB

  • MD5

    c3041c89adc2a113b673c4070408d303

  • SHA1

    d4a640d41f37e6bd482beae56073dfeb495cf5ec

  • SHA256

    ea0440706c8b829f44c5442561b6c60e5104334b42e5baffce3d910ebfa9c3a8

  • SHA512

    2bdd56587b64d7644e553adfb0e4d250b04eefb041cfbd7992e6828bf90777496b4d265646b642e02b68b7cbb43119eea6a7858f89bb654e12ff4c790957566c

  • SSDEEP

    1536:VLIVo21M0sJQpgzVgmaAjfDnBLT6fxGimlShKWeMW+X4mUnrq9jWxApOGGNU8afc:eo2KZxGofDnF2F9uMW+U29s3GVVc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c3041c89adc2a113b673c4070408d303.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    08c109e9810ca17f1d5f290e18fee004

    SHA1

    44a1c1e40bbe237dcb18c3f5fdee8f03edec95a2

    SHA256

    c5c44f77191748d0873da160d00d2008f73f57e1f51b9796530f4853437a3aa7

    SHA512

    ecc0b6e7580cc1bc54f77e23fff9e7e3edb89f62a2fb35d61de6a29344957c9ba398b431ce6ae832b888baac0db923d19e9e341d00f49e76d5210ebbc2d69584