Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c743b49aa6...2a.pdf

windows7-x64

1

c743b49aa6...2a.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 00:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c743b49aa6dfca9b8349f7328c1b3a2a.pdf

  • Size

    113KB

  • MD5

    c743b49aa6dfca9b8349f7328c1b3a2a

  • SHA1

    9d3b25302553cc7e98171dccaf84d476fe107bd8

  • SHA256

    b95aaed3ab89a57db04109d6bf7776a5bf818e314b7d38f5e20e985ee798260e

  • SHA512

    0acd31de9c20b1dea5ffb71461d45eb571cc1092d0f7e02b7b46cccc4417deb2d463d39579fee17cc0ea3c1ca6a768ee6ddb9cdf39cc0aa851fda8dfd44f4f3a

  • SSDEEP

    3072:KmWQbSfsAaIw/YX8NY7Y6PVFOo/0QbVAc4jgdNMNP:KmWQbQ8gX17Y6PVFHbVz4UDMB

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c743b49aa6dfca9b8349f7328c1b3a2a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ccec15288be736b65cf05b2dd993c312

    SHA1

    429f0d961bcb9c0bc311fa4887a6f23a59ef4d15

    SHA256

    e4a3e11525b75619454c4692ee984e194d92bdee0b0f658c73076e85af97a0eb

    SHA512

    37814c1ad6913502142c24861672a01298cb06f5ed9675d906671ecdcb0390df1eae65fe4bbdc9babc0dce916075b397be337c45203149111206d8c439e4e611

    Download Submit