Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 02:25

General

  • Target

    ca3f34ae0c3d9d0017fe901d8888071f.pdf

  • Size

    110KB

  • MD5

    ca3f34ae0c3d9d0017fe901d8888071f

  • SHA1

    a5de753de0dd0a788a9f1df20c60e5df29545f5c

  • SHA256

    1348d9c15cd07e4ce6f70b51d6b76de060593b7ef44e7444b844e486681e96ce

  • SHA512

    fbc3052b4a9d4036551f2760e0a2e10f3bd617dd74388c83642daf4c061396f9ceb809ee80e3aa42b76af12b2d8deb7ee72f0ddc8e749b61bfa4fe733810a7a1

  • SSDEEP

    3072:ar7XY63UReAj+sLtxi9YyGjGptQJwfdmG6:qbY63URyT+jpwP6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ca3f34ae0c3d9d0017fe901d8888071f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ff4f862de4e7d460fcee0f019ab7f16a

    SHA1

    72b88778cb3e0be2241cc44dee358f3b71491689

    SHA256

    310ac73c04fe30b106468197db1f4c1fb645e28af55c00f1227b36b78d989cd9

    SHA512

    85e40672e2285a1f231efef0ecc67ee64687a9df3aa6b7ed5189f49f31e224589fb80f2969047cecc9bdb1b12fb08b4f4207778180cf75f282c38df47031ea7e