Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 12:39

General

  • Target

    d388e4f05c4f36801846c081b8ca368d.pdf

  • Size

    68KB

  • MD5

    d388e4f05c4f36801846c081b8ca368d

  • SHA1

    91d6682ef4b2a9a39c20e073bb87bb0c980749b2

  • SHA256

    b5015ed51b1d67681d405b261e3841a65ac6b617ac7536d4db37a3a525a82779

  • SHA512

    281cab0abcacee3f3ad9367282e05f719a108d2277407c54d1e3f032744d12abd930f2819fe14dc69fdea20fe52b8860e1c2ca7a1153e92d48e2cdcd5df3faf2

  • SSDEEP

    1536:1hOtzTJSG5ppqSkUtiWEFH2ZPF7IwXOVSNTIY7stQOYuLYIp96Me+tDqnWZGWpUM:Uh5qSpgJFH2ZPNIRQkY7s/1LVe0Dpsa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d388e4f05c4f36801846c081b8ca368d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    3551742c5c0492312308ec4ecc9f7fab

    SHA1

    f2ad9212c315599a3a3300fbc99a165878c8c6ea

    SHA256

    6d7a66d3fd333f1ba49c80708a5a288376d52542a418c3ec33194787ff197c29

    SHA512

    9c4afc2e850b52d925f960057a20d843a62e0c69ffbedfe51e8f8de6a0c20142066253ee88b70617c0d4779778106b711f7e348a0baa1d5a499f27320dea9601