Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    16/03/2024, 03:48

General

  • Target

    cd07464c01dce9dca38519e55d1f694e.pdf

  • Size

    26KB

  • MD5

    cd07464c01dce9dca38519e55d1f694e

  • SHA1

    039856e9b035c850e11b0f1e85c7f217c5a8a653

  • SHA256

    df692f1bf37d61896a0f554bc06025ade97cf8921ea3ff25b66a2756ac3c624a

  • SHA512

    9369ef1ad8a37583818170b1c15abf5bc568f6fcb3b8113efa00a6dcb92241b7aa40e03b5f97024895229044d26a7f840fdb41366b7022342c20909220a557c2

  • SSDEEP

    384:SXnW5pkMe47O7Dqs/bxMcPJj08Jo835HSNWp8KKIFIxU1XDCUSyPLVWy:KYpeMO7Dqsjm6g8Jol0cqzNVv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\cd07464c01dce9dca38519e55d1f694e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    63f70f9ac13079195f60735b61bdb71d

    SHA1

    44f52ab719ea3ebc80b9ca06212377bb2c5bfccb

    SHA256

    5b5410a0d60ffb59dd940865ae7e4d3c2f1963a343f1a05276b591b86de4f3b4

    SHA512

    8828b3ef293ab75b454fd2d44327f297e7024c588bd56f47db58d42d4ccff60f2d1baaf94f20bfe0dd19844d10884bc7b14df3aa819ae41ed6358c82839b3c96