Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 12:01

General

  • Target

    c35060488084e8f494c3434cc400dc36.pdf

  • Size

    275KB

  • MD5

    c35060488084e8f494c3434cc400dc36

  • SHA1

    c260fbe330abc9a5f3db7d0c8442d6d6d51d0890

  • SHA256

    667944d60e1e150e971c31528284b3f068d657d09e6d0ff60f54ed1fe43bcaf1

  • SHA512

    e043fe7451aa00b5a2d143dd224c22b9f5e144767dfbf6a4b78b1bbfe346b774be8e7b870d4f34ec5fdfb23988f90e7d416ddee43e8520fe9f1062a774f7862c

  • SSDEEP

    6144:HMvYdaIn39ttl67Q+mU+fF5Lz++T0KVGGdaI4YSc83C:HMvYLnbtl60w+fz+BKwGdaIe3C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c35060488084e8f494c3434cc400dc36.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2908

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ba433adc131ed17e4d474d6a96cb8352

    SHA1

    85213ce392dd005a7fcec3d7041054e36a3474b8

    SHA256

    617cb49c335668ed365018ddc87602dae9897710731e36c186eecd4feb76d6c6

    SHA512

    f737e4bc2af06016a4bdf13cea29352dd416a70c279061f6f7efc72f30653030109e3bf0e50cd8b45147785849aa084d1821f56714015cbd372053e65e6b7d70