Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c80f8f0d08...61.pdf

windows7-x64

1

c80f8f0d08...61.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 07:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c80f8f0d08dd6f1c09b81070957b1861.pdf

  • Size

    80KB

  • MD5

    c80f8f0d08dd6f1c09b81070957b1861

  • SHA1

    ea43be0c09a38af2ca5d68ca95fe9e3229990e18

  • SHA256

    80df7f1d504b4aec26d24cc6251d17d73a53f5c9a00f42fd67d3583a5f205643

  • SHA512

    738f2ee92fc9874f026e9840870535b6da87579476c9aa1fcdff9acaf02464e6905fb8d16b57508cc325ddc557af2b254568f33f15bec95d9ecdbf49fae7c4a3

  • SSDEEP

    1536:DNaiyWV18NkSZAj12AJhhW5nnBMP16EAa/KI6WCpOViIWFFNJyP8in:prjV187ZAZRJ6ZB6cEAvI3Vi1YPP

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c80f8f0d08dd6f1c09b81070957b1861.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    14edfabb16c9d2cf4a5a19b373e48cc8

    SHA1

    1be9cb2676c25b6ce9e05b086396689eea96c3a1

    SHA256

    297115283aee82794ab94702084e0dc744bdaf5b2f93dda4a85af3c734d8c46f

    SHA512

    bc08c97f7061401e26528140916ebb79feb01a015110e44346e7c8dbdb52b0f5478046e539da8ce31257ab40e815842b7f66dec6b4d9ca1014b0dc05c40aaa4e

    Download Submit