Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c9271d6cda...62.pdf

windows7-x64

1

c9271d6cda...62.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 17:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c9271d6cda73583fca7b5c8916d3d462.pdf

  • Size

    109KB

  • MD5

    c9271d6cda73583fca7b5c8916d3d462

  • SHA1

    01be67b3d06e134a53e83649e3bea93fe061ba8b

  • SHA256

    37d4f82fa3bb54a5a523c8e2c771fc9bc38621b2c1d0e72291a78dff98c883ad

  • SHA512

    2ee023f595b3d0e7cd84f2cbf7c8fd4d1f3392d18db0358610ddc7f6b3f52bdee2509c5cfbd3db30837d1a7584996226cc19e096ecc4282a94bb9c973cfe8419

  • SSDEEP

    1536:WB68wmu6/FdBDPHCIhBOnbFO2iQWpfmJzcnLPNW3e651VYDIaixWUpO7Dwf:46DmV3BDfCAOnA2SuJ8K88ai07y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9271d6cda73583fca7b5c8916d3d462.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c2dbc1539e34f658944b723fca5762a2

    SHA1

    f343eae11f4cf42e7bb49327674497d6ed642319

    SHA256

    f82bc303620073106258cd5eeb7b80960de4d5fcf33ee84e2e551949f3c53baf

    SHA512

    f68a1223bfe0204794f156f27ea369c7db8787686a41289055cf904d16c193bd3038664e689eec3f2f10c406c60a3a2cc81f3a678abba7a4ca987ae42ef91b1e

    Download Submit