Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    13/03/2024, 17:11

General

  • Target

    c66ee75508b93317735181443799a80a.pdf

  • Size

    85KB

  • MD5

    c66ee75508b93317735181443799a80a

  • SHA1

    a58d1ee746b1a888217bb8d76008f7f5f1ee9d72

  • SHA256

    bc54c119cdfaee6486ad23f83fe29ad083548bacde76db772609ff7407a4ae8c

  • SHA512

    711ea6538b8c445e7325abda63eb25e6f3d40946b5040dc485d783de3904988f2f9add27db9673890aeff7456b81769abaec7d5aec43954c5b669f9b207dbb83

  • SSDEEP

    1536:/OfGDxoedynygE8WIE/K86jRrQ5gjlWL3sZ98vv482TWF80BcgqYQUTaFWyR6hWM:G+D6ecnFE/2jRrQ5gjlo8Z98vwV272WP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c66ee75508b93317735181443799a80a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    faa9bf78fe449bdcc684b58d2493df79

    SHA1

    cbed2cad6d21510fdd14d97c81c8fad0bf4faf77

    SHA256

    91ff3893e2e6d3d846997853ef1b5d8bdac4541ddfe1fadb094d37ff0030ca3c

    SHA512

    c276e3fe9b1160a1efbddc4b7ce29b605d16eddb07b3e55bb0b7c6d11fe2074b0eb72fa6165d7d582156aa410e1b46b63bfd4f8a74f335097fbc7f81465aa6bc