Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 21:01

General

  • Target

    d71a98e52e3f3e3d724514e9d0fac080.pdf

  • Size

    85KB

  • MD5

    d71a98e52e3f3e3d724514e9d0fac080

  • SHA1

    76479f6afcd4e668fcb973c65cc6b2554a4cba09

  • SHA256

    de1b770c14b783bc2365464293676aa8d48b4e64094fc62eb84c44c4a20770c7

  • SHA512

    208129a70985a1cd7fa3fec1f5552172207b7d6aeceb5401e83eef0ea48082ab3a55f19cac1c71c787d11f0ea9ce523b16895ac30e7c3ede3b5a5ce4e2ec51a2

  • SSDEEP

    1536:xfkk6/4+ssysBDohD4L+n3gxgQwKmx/z4tcuEa8TOcWvunfASvW8pO70ElCYDA:dz6/Os1CD4LXgQwK6wDJhTu4Si7/E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d71a98e52e3f3e3d724514e9d0fac080.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1160

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    85fc854d859aeae5f6f89ce9357eddb8

    SHA1

    a333f53e2b6056aa15b6d8374e6b4f03b3018802

    SHA256

    d6ae22cf66ea8576753b905ec60e035e5bed7db6516c88bcf58c925851e59e78

    SHA512

    7e638cfd668777c65bd02dfc8dd7a37a6dd0c8efe7dbba03be1b927c26969d605c0b79bf7a3fde10f3a44ccfdc760929e5438c625ec2a969f89bad860d35f23d