Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d64968e334...85.pdf

windows7-x64

1

d64968e334...85.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 13:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d64968e3340c25b5730f8d9102cae285.pdf

  • Size

    84KB

  • MD5

    d64968e3340c25b5730f8d9102cae285

  • SHA1

    1da0515d8c968af1c571b5a62fd1e70b7e94878c

  • SHA256

    aca2ebf2733fbe1705d808db0374b27901820bc7fe041ba16c034a4028f8d02d

  • SHA512

    965e4eb0a67b619ee3c9fe2222b9800cb3763a4fb09d86debd9fefd3d0d08239e30ab8308f280359a27d6634d7741757131c25410366622e92d3dcc63974cff7

  • SSDEEP

    1536:Udw0ZdTGmf+Fe6/18dCTLuSQHzE6AfgcYDeL3+zBV7+WxApOGzWTwMdJQwIb4:I1PTN+9N8dCTqSWI6AsOK77r3GawWN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d64968e3340c25b5730f8d9102cae285.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2864

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8765ca6b682628458c0b03760b39925a

    SHA1

    aa4d3462a94603ef19170cf0b2a679b5e0185f81

    SHA256

    85fb3a633bf09afa11105f7406ed14a7f6984aaaedf6f05f74f5b0bb5bc1be45

    SHA512

    22c4e7dcd5066e9ba5efe77c98aac82422b94f79a8c7d3280e3cc360c2bb58dcde9bac94f70285ec525a064e299eb5eb5f267c44b1faa2b954889ecc31cfcd9a

    Download Submit