Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 18:53

General

  • Target

    c95b42685ed79bc58de819a964bc3bd6.pdf

  • Size

    85KB

  • MD5

    c95b42685ed79bc58de819a964bc3bd6

  • SHA1

    d29b513464c0fa7974b650d6d42b6f5d71d6a7fd

  • SHA256

    28ec893b46884b934ed5e9ea394f6a74f180fb5f7c656904cc661e39ed9eb2eb

  • SHA512

    b0080280856d806f4604872cdad6271e27b48212a5873da3f3dabbd76dfe8fdfb35c5b0a255dde35569c7943894016c7ae56a3458f77db82671b9f26f520a333

  • SSDEEP

    1536:CXHqP0dpfz+eQtdL5OxqwbgzqVZxFvkT8sJNBZViNMWRYC6KBnniWwE46N0I18/k:iqcdlDQtF5OxqkgSjvkg6s8Kli1IS/L4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c95b42685ed79bc58de819a964bc3bd6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2140

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ff367941c2686356789edc6a82a42ad6

    SHA1

    6aa88e8817df51d6c10667bc45c0c8035e23653f

    SHA256

    0cd5e5193ce8f55a7480ecfdc8d882eae66caa7464c0ff97a6827e0708b84b29

    SHA512

    8af8f86d30406fad9d4e06ae55518f28e8a9a93f538507e19286528b4f68a0097a11f6eba34fa1fded19b8f9b68ea27fe8be037c997e94f043334365cad0fff7