Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c673098ecd...88.pdf

windows7-x64

1

c673098ecd...88.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    13/03/2024, 17:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c673098ecdeb975446bb2121f316c288.pdf

  • Size

    94KB

  • MD5

    c673098ecdeb975446bb2121f316c288

  • SHA1

    f6b64060153e45f023175a6fb13341b330e8cfee

  • SHA256

    1c2ffd8e1994aad467766256b2037ece70efed6ffba0e35ee8256a59d13732f1

  • SHA512

    1ffff77e8950c5414e9548ebaf2e228ffd21f3fd2573e6d5f516adb8c72b27c421275683c08ea5b69bac1c6a75a49dd2c393f5e6811b8d22f747e19bc45a3d65

  • SSDEEP

    1536:hMKR/HG/dhtzjOuiTGmFUN5Nsqi7T/0w3P5EOoRF9w5R3WypOlLPOZ67WHxAlaeT:+sm/dhtzjOzGmFqsqc/B3P5ruY5RAlLX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c673098ecdeb975446bb2121f316c288.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1660

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b78dd78258078379ee00d9d2d90564ac

    SHA1

    38a23a8cd78c41520e8cb5bd97ed3e80c8fb3ce5

    SHA256

    55366b8b4012f7ca58653fb54b02ad5afad141c5922ff4ebbc8c57f5dee1307a

    SHA512

    1376d38a0bc34cc9e205e14e993aa05fb2f6e2127e81d1f5bdb9cfd18d6295674155a425600d09f02475b19a56f72a607c0d6ebc1ff8d365253846dd6cfae93f

    Download Submit