Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 01:57

General

  • Target

    d4ed9bac4773d9f5f3a79111747ed6c1.pdf

  • Size

    88KB

  • MD5

    d4ed9bac4773d9f5f3a79111747ed6c1

  • SHA1

    67a19e0ebc472651376e3f2c8823de91bf9724df

  • SHA256

    3f2e70ddb35a363d526acfaa99c6fbe042ef43950b6a7bf35d4039bba7b8a33f

  • SHA512

    d463db592ad27b2be09fcccebe859d285512461447b4cc0a29aeee61f72179f7e1d05ab08c5948767195384e132a8f4afc95e3802745625cd32f719d297d5d73

  • SSDEEP

    1536:HOqv2QD7AfpdErZ++cDE5Fgb4XKyXgJ91SXcUh3NlBNWOIU8YI1DM4PWapOtQa0E:uqVVcDsFgb4XKy01SXcUlBS7gtQa0JUp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d4ed9bac4773d9f5f3a79111747ed6c1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    06267949ceca78cedebaf792633f357f

    SHA1

    c27cbb2d4a07a59902b0d2bdddff2d680def37ad

    SHA256

    571b45e44ae2d547260564e86a3f2f348330e3ba9db0fbe3a3ecfe21113d26a8

    SHA512

    c6f575f8b6b51036b436b93ccbf4b4b4e26428974de9c3bff426a5c0ccc58354ac8a20a74c66e59e315e09944a3494c05d2344d5b7f4509278bfaff00000a27b