Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

cbefaa11d5...62.pdf

windows7-x64

1

cbefaa11d5...62.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/03/2024, 16:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cbefaa11d5d2cdc58243d0c3d18fa562.pdf

  • Size

    77KB

  • MD5

    cbefaa11d5d2cdc58243d0c3d18fa562

  • SHA1

    fbff48909a0972c190fbeb14f323e0ba50aee5f1

  • SHA256

    c5c51083c1aa2bdd94d8d595805c67fa38b1353880b36e0438306961befa4f4d

  • SHA512

    54518274687b609dfcec18b0dbf49ec1b53317722a9e8a64ea15858cd92aa958411b2cbdbfe45bcd7252a8d4254aaa46ae320d0dd1846a4f9ed58c0401548566

  • SSDEEP

    1536:YBllTm4LUV1M/U3ChlxQd03i56z5J5KWapOtQHW018JnoItQHI:ollTm4IPM/csId0y56zL53tQd8dD9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cbefaa11d5d2cdc58243d0c3d18fa562.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1284

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ae973d2849bb3968d91c3867896b04f5

    SHA1

    6366732e338db1e4bff0ea7857d22fa9c8c8bcec

    SHA256

    47abaf6a14a1094feee880e4052a9a095e1a81efbe99f3b25cf670c9edf6413b

    SHA512

    237ad9b43941a34b7772e503097eff3b415d71f5c574b81bf1491ce19a797cdb3690bca6520ba763a882d884ec181cf4b5e05601c79fa1eb4b73c1b0953218fe

    Download Submit