Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

d7897604b9...c7.pdf

windows7-x64

1

d7897604b9...c7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    20/03/2024, 01:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d7897604b92722e318616941cd77bfc7.pdf

  • Size

    85KB

  • MD5

    d7897604b92722e318616941cd77bfc7

  • SHA1

    7b34fb70cb2c3bff08eacadc7c89cb79ffcac35c

  • SHA256

    3c9f5c946d341e2dcf3107d2fafd4efe862b47f18671ddc1aaef2502a5a42b20

  • SHA512

    794b1da84ae6132443a99996a6d485d42f9aab13854093df9f6e64f3feb2c1e3a9162312ec64e5f7937ae2611659bb4b2784abdc8f432773d2e6ed4639ab9a73

  • SSDEEP

    1536:1uHOUfJB9j3cqO+OFUg04lNqRk+X+yGJer1f21PRQG1nvrfvWepOiCW4t6l2Qc8r:UfXOF847a+ySuf2hRQG1QixDcY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d7897604b92722e318616941cd77bfc7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4377fc9272bd420485c48e3bc1484223

    SHA1

    ad4d8d9b2d216ab43a68a244c07e87f7b2b56e8e

    SHA256

    65afcabd475a522aacb394b0ad1d62a7d74557d5ecfe6aa321c14063a39b6c67

    SHA512

    3f2212c7c20b045e0add6f60f0bcb877ece51be16283124b1b72f7377b71fd3ab80103d8a3b73cf848d3df4a45d374081fb6d0a18ef98ca30213ccae48ee8074

    Download Submit