Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d69962d6b2...09.pdf

windows7-x64

1

d69962d6b2...09.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 16:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d69962d6b2beb651d373f42b860dd009.pdf

  • Size

    91KB

  • MD5

    d69962d6b2beb651d373f42b860dd009

  • SHA1

    7a0e87ade37dea27278f32f7677eff9f82287adc

  • SHA256

    23d5e7333791e9d264b4f84e220d81673ed490a0c66500499b62a7b9d36e2af6

  • SHA512

    e7dd8c8eef9840eea85e9df5404828de72538428637bd45affce63b43f6e749b9c03ff5b860f9bf18c460ec10fa8a0fc712cc943aa66c451ac44781f5a0741e4

  • SSDEEP

    1536:lqrCtm1BzzUDdfIaWA8y3Nw7OfsD87zDNHjgKW4hqBCVE/cwWspO2vto:grWm1UfINA8y3C78D9jgelNb2m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d69962d6b2beb651d373f42b860dd009.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d4e71361630af91702c0601070dcd4e8

    SHA1

    2e3946c061b87ba37ac5aa2aba70c0cbc8130546

    SHA256

    54ad5961a510d0fb52ded31e9c68cc495f09eb497f15da836ff10f07db1723e2

    SHA512

    9ea79526e172179ff06fe4466895806f3e17268b13cf135f7d5046b5f280d9f9cf924d9783b668aed3198172eb2f4b65081cda6ab9f1361c5060ff0c3f2a20b4

    Download Submit