Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c8e797544d...fb.pdf

windows7-x64

1

c8e797544d...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 14:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c8e797544dcbfdaf689d30b15ccf59fb.pdf

  • Size

    41KB

  • MD5

    c8e797544dcbfdaf689d30b15ccf59fb

  • SHA1

    1063c2a7e2246d211dbc238f098bc7a41c7078af

  • SHA256

    6b5ad80a5203004ae4142c06b8d07883fa48791d49f8819e6ee5e0f6e53cd613

  • SHA512

    e57e1f086a9bb6987807e3dac36545916b6558aac87a7b8b0b20f1114fce009b382d5f059bdff727893a6e63c75bc9932183968e2901b5adb6abf8b87b23c82b

  • SSDEEP

    768:e7jkxFEP+qGX2h8PpD9x+T+drSPdJK+qZ5mPfb8pfN3dn1:e76CPXGX2CXrmdJKzm3b8pdx1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c8e797544dcbfdaf689d30b15ccf59fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0b542b85d9b1cdf1022ee1c1d730f0c2

    SHA1

    0ed5cc44e56d3936844c4f27e345b8b134691288

    SHA256

    09f54c9c93f47b748acc71ee49feb112cdb46dd7f8c34e7471b9594fe493f5f1

    SHA512

    88ace7d9c2a452344b32fa82d41104af59d22f9c3ce58a377218e1d5e84e5a7d81211e650d5766509d5b89832dd4c8834f275e947098d2ffbdf2fcc455c4f1bc

    Download Submit