Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d61296d331...1f.pdf

windows7-x64

1

d61296d331...1f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 12:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d61296d331928a040a38d99fb84d3c1f.pdf

  • Size

    132KB

  • MD5

    d61296d331928a040a38d99fb84d3c1f

  • SHA1

    bc909968e12afab201f3af70399c33d12e459313

  • SHA256

    b0226eb597b41b1abff28f95a388a03f9e3e86c5d0451d2d83962c7246b56ab4

  • SHA512

    8b80424d3977313fd1588dd982664ef8e46447e531231b83e47150c8c3b2d6d6e0beed191c1fd259ab308fd42de4c995646936bd1b4d9968e51a5f398dbef15e

  • SSDEEP

    3072:Z4JFNXL2fKdYPkK52fs3qM0uNIR/00wZKITPfvy++wBY:cXdMx3HPNIR/00wZKQfWwi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d61296d331928a040a38d99fb84d3c1f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1724

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c643089ab0fe7c30ec2c430761929bba

    SHA1

    080459cb30a7921a0e9f49f64fa27fee5e5d191f

    SHA256

    22c302d1b5224ec1fc66907a39fe9c4593d518ab3f684b016d8be2622b291507

    SHA512

    55b2c2a13e07bc9721bc8c77e08c9fb699eec664280ea769d198264b32141104376af7ebe3d43abba826a8ef6b971140a4569caf108a60cf59847dcd53214e01

    Download Submit