Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

ca4009bde6...e4.pdf

windows7-x64

1

ca4009bde6...e4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 02:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ca4009bde6bd047337c3dbe4f0c4ade4.pdf

  • Size

    36KB

  • MD5

    ca4009bde6bd047337c3dbe4f0c4ade4

  • SHA1

    3b2a85733fb9fe810d6d177211811ea6027a2eb2

  • SHA256

    e11ecb614a658aaa28e9fccebd52cbf315cc3e61218f4b954b89e445da8f4adc

  • SHA512

    a53c9235479ad5ad5c943a42f9bde46539467d709084c14efd01e2d0019b430b9976800b5f2935dde0ae1df0bdf76677345f95479b2e89abe5bc3a259fa032a2

  • SSDEEP

    768:EVjrpq1e/lT5Fru6SRIS7iFPVLoCRSwGRJ7s1i+aIUk:GI12D0RIki9ylb7sUnIX

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ca4009bde6bd047337c3dbe4f0c4ade4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d72bb23fc728d50bda079fe05699dcdf

    SHA1

    ef377e66eae8d4e92c74897117ef09eef628119e

    SHA256

    510553d71d3dd2f4a78f1582fe9a10f627fff080c67d2f52d739adc303282dd5

    SHA512

    f3fb01af84f6f3a16a3e5f9c6073f6c83135790fc448f1c29c0c1e6e0640498d1ccd56b2cbe1f7160c1e225445ad2a3c8946ec8e691bc21c0291dfa33bde65fd

    Download Submit