Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d5a736eefe...27.pdf

windows7-x64

1

d5a736eefe...27.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 08:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d5a736eefee949db97068338f9343727.pdf

  • Size

    83KB

  • MD5

    d5a736eefee949db97068338f9343727

  • SHA1

    791bb2001e724c7921431e9d226ac1e428c27474

  • SHA256

    3f847498a4cd8a691fdee3b7110478d8201db6839d9dee9d93693d6de39b9b5c

  • SHA512

    fe383f1a2ad67bae1d26bcf343f6ada1c510e432e5cafd5221fc2bb15c5d65084b2ccad774ace17bcc2854e9657e8c9bb8b4f14fb2e15e5dad5d853094ca84b1

  • SSDEEP

    1536:u5TNQrQ/D2rC/UCq/EEF95n0b8NXDO66VJigr7BjaO1WIoiWkNpOPaW50u5Vp/kY:cmr42OUCq/0bWXa6Gks31UPDfz/1UMMk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d5a736eefee949db97068338f9343727.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2320

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    26c065bcbf8809d1d8549b4d5f82a63e

    SHA1

    d702c7535a502eba6eb5fee8163ce7f4041c8ce4

    SHA256

    7f5dec08cf28c78ef1bf40ee879e8958d61c71eb9357be45916880a4f48d9fce

    SHA512

    fa9b2c1743c02c50e4afa1b3bb7fca68e593d4467c8be485178b5f5ba28f3d8f2df24021004b2b91c93679db960b948c566bc3b9546d54ebf614f9af41cbf0d3

    Download Submit