Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 23:58

General

  • Target

    d767745bd9ed1d56f6c21dbd2bce0419.pdf

  • Size

    101KB

  • MD5

    d767745bd9ed1d56f6c21dbd2bce0419

  • SHA1

    4d7f58cb6921155f035ae561c1ffe89a9c9f326f

  • SHA256

    bae04d75eb703bcf2e626dc61cfbe2b3aa2c9738533c4d2df490242dfdc29e4a

  • SHA512

    e6330e3a5820791489a706ab445d6637cb0781e254d3fd029647ec842b7c4a9c60685f9e5c42a4efa30ec4dd533920537fa5793f7e089062714d1df037904f13

  • SSDEEP

    1536:u5Dk+jesTpiTdVjvkZQxNdwQLxsPGVxmZS0WjJkGWkNpOPaWkcVgCcCeSWhI/1qd:ijLIUZgdwfPGXh0WjJyP/cLL2YUC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d767745bd9ed1d56f6c21dbd2bce0419.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    24bc7b43a18a6d0f4b7fe27fc58e6497

    SHA1

    401af6285be4252054a8f1f1870aae261e545eb8

    SHA256

    2c14b11792d33ba22b4a995807b95bb1afe5a19914193dddcee215b82a637bc1

    SHA512

    d1ec4979f1e4a7fd2559b85fb7b986694155fa2f6148cb17063128e16a8d281b3096ad80faab5119f7872c41822d840be8c43164a21f777ff667b68f3b984b49