Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d4d5743e54...78.pdf

windows7-x64

1

d4d5743e54...78.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 01:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4d5743e548ec9120287d219cfee3378.pdf

  • Size

    86KB

  • MD5

    d4d5743e548ec9120287d219cfee3378

  • SHA1

    e84338c79ce969da761bf5bf501949c480570944

  • SHA256

    73d421fbb51b7a11414cd81549beb7cd68fc434c8ec49e13bb4f35af72644874

  • SHA512

    9d3bd8faad2496a7d51e59a1448e95f2d6c0b02b51b90853ca12bd6b358b6f1222e42fa3e00cc8966c00133d5a35f15327932634983fa1a4fd3381a94d9c7973

  • SSDEEP

    1536:o7Mzlt2P/W3l2ZKDi6ptHexPGVAmds5KhVNc7OHrqI0bhslJ6WXtfSi2kUyqLtWy:sMxtnDDpEWAm28hz2EuIblJvfS2qLs7S

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d4d5743e548ec9120287d219cfee3378.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a4a8eb8bc8918f7b5bdd7cd4e98c175a

    SHA1

    52ac3583e007e7c9cd583f29a9241a41c1f59453

    SHA256

    3afad24cbd43a6a359f3b496cafe057a2800f30b37f853e8dc8cf8011f54bc26

    SHA512

    4d0ee6a2b0c1b17884214f7bdd6c6636cac07c5dc923cfe02537436b03b60387ca86218992170836f9ba4bf7285913f32f3cfc4c88465382b29cf0c1c97ef3e0

    Download Submit