Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 18:16

General

  • Target

    c9484bfb19fef6e48c75c188ce38f69f.pdf

  • Size

    83KB

  • MD5

    c9484bfb19fef6e48c75c188ce38f69f

  • SHA1

    77c68d665c38a7d4b98f7aa61a5ae3b7689c7882

  • SHA256

    5930dacec6515ad875d18e98ace31262a032aa11966f82c21625a73e121dad53

  • SHA512

    4c203a2c60836eee6fda3327cf6fcd899fa5fc2b56fd9048e40b758a59878e2fbff494b482000f2fd5ed87c3d58ae6904f8197893d800e21623a673f0295c4b0

  • SSDEEP

    1536:SoeIeQEwCTfWA1UVrlbWl/t70MFlnpileBKG1p/bzWgbfPxRosDgeBy63WufsV9U:AICw2OAqVrVC1AG19lDxRosDggy6xfs4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c9484bfb19fef6e48c75c188ce38f69f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    411548af2bdec1b5e369b3d9fa1a9e02

    SHA1

    ac41ef64e8eaf61dd0812e40acf800762e7c00ef

    SHA256

    d9cb990f5bee29079809096ab0ce6d6a4dfe38bfbcb18ac104b359b0a4d6aa25

    SHA512

    58d4f6c126b0d3ae85599178986e75e4faba7448ace1585e7831a68eb5e17a6b9ad7fc94c86390c91becf8bdfb60da14eae5027e96c8a3f69497594f07f463d0