Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d6ba0d6bb5...fb.pdf

windows7-x64

1

d6ba0d6bb5...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 17:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6ba0d6bb5a17182bc0b9d68b131e8fb.pdf

  • Size

    91KB

  • MD5

    d6ba0d6bb5a17182bc0b9d68b131e8fb

  • SHA1

    ccbabb29147a818dbc4d8b65e2d8266d32cb3206

  • SHA256

    163adfb07237b22536ebedba90ed6bf01b80595f49b62fed01bd3871244c1d81

  • SHA512

    f7e4d1b8489821a13e8049bf44d6d1168c24303bb7b45f4ec3694b84bef84b09d04e80e1c324a90a25d62d4b9821487283d83da3fb8e385a43103d44c9f20798

  • SSDEEP

    1536:qhQ1LWkMzjCpTfPH3aspViKn3HlHpfgsG1q9ztXb5g71WJMUR9gW6pOu2zrmwi:IQ1ykMzj3spVxnXhJG1sNOroJu2zrM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d6ba0d6bb5a17182bc0b9d68b131e8fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1556

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    08f5765182ed8bdb9b35e7c0ef3dc5a8

    SHA1

    f0d2297e95fab62785df3802db671f39d3df5dd9

    SHA256

    5be3b783013cfa6aee8770e9aeadecdf65b4b9b9b7e65222e896dc8715b458ff

    SHA512

    ce4633d08a4c91a1698c01a6a50844cbc1f8665d9caaa5c6ab2a632706e5378d0cb33d74a91cd1a2d4a4ce3eaedcf5fd370e04971c33df7729ad026e4107b4cc

    Download Submit