Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c8bf6b50c9...a4.pdf

windows7-x64

1

c8bf6b50c9...a4.pdf

windows10-2004-x64

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 13:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8bf6b50c9cdc893142ff77eede2a1a4.pdf

  • Size

    44KB

  • MD5

    c8bf6b50c9cdc893142ff77eede2a1a4

  • SHA1

    0f6e219e5feef85c7b370dedab99e1d0b707353f

  • SHA256

    e82ceda66184c3f67b32d647ad7d1910ed6a38103ffcbff00bb4a4fbfa496384

  • SHA512

    e76cb58b9ed96d017b4c0332119627241d6ba99652122f5b4f7d95f1ed2caf88c4e9eb6eb86c5775e453fc242a586d85206b1df8fa008a68ee4bafa59a4b55d0

  • SSDEEP

    768:myasisbqnDwxQbABfqu/VwSE+gp6KYd6Fb6WdZ4LQGxxyIYVYZjq:MsbqDwSgJVN4X37o8GxxyIYV4jq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c8bf6b50c9cdc893142ff77eede2a1a4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2260

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3209d6f31ebfb6a0942a39729a87d3be

    SHA1

    d900693e91f1e4437ad47256a9a74ba88e998d9b

    SHA256

    9be51e99dd9a5db105874a5ea6c999422fbe99db8e357fcf60484ce8a1a10989

    SHA512

    b708bf269467c6cf82602614c3c648954a1d7b06a11f7ac2a640fee5191e21a3b1297bda0a274ac08e1909d06ed61800e9b2d3aaa132b9623c269e6cd8751a56

    Download Submit