Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d44d26628b...c3.pdf

windows7-x64

1

d44d26628b...c3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/03/2024, 19:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d44d26628bbe8b8e8dbb6448da3fcbc3.pdf

  • Size

    80KB

  • MD5

    d44d26628bbe8b8e8dbb6448da3fcbc3

  • SHA1

    71139ae07cc1fdecb2876bb40488512b1b6e1bfa

  • SHA256

    86a050d60995b07b580cddd12003805990b96ec1e464ce342ae3f9df9a19eac8

  • SHA512

    6235388e4cbc2e530bf4006b1de16963f7e5a483b9c0b40160fe3ed1cb1325f9b469b67c502e105b143ed1f9b4d4b34009a39539244a08a48506c753bc85cfd1

  • SSDEEP

    1536:RSMptzjVd3j2YKh3TnaDwQ77Nfwhmy4gtCJp0WNtglwEwr:tFVNCzdo7xwIy4zp0WV1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d44d26628bbe8b8e8dbb6448da3fcbc3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1412

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    7bc34021335d568a93a47efcd99b873d

    SHA1

    3485f77ec1fcc9d0d00e5e242e72bd656a2130f7

    SHA256

    8cc0399b2470d7c4756ca6a51735496b7da42fca88b6bac36ee0f4433446e31b

    SHA512

    2dcd9952f7ea39d4e238628c81ec27bd6e396096a5563f8feb8ff95c57dd7f2dc2df26927928843bcf9c3d2582ddab1588dc703dde901eab8b8ab1af606721ab

    Download Submit