Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    20/03/2024, 01:13

General

  • Target

    d78c3db91b28c880ffc69b266bc9eac2.pdf

  • Size

    49KB

  • MD5

    d78c3db91b28c880ffc69b266bc9eac2

  • SHA1

    1c9ecdbd5b9ba8db52629a0425aa2b1f181ea563

  • SHA256

    dc35a2f223a603a6905e38da03afb8e3ade3050c182d45a0c09fabafe3e7cf43

  • SHA512

    319aef0dea59ccbe0d0d7af209d2e49a3e68792ed45975462f24c2a45ba2c022272b72c5316b1a257d24b491c54cf0f1ade7cab1b7fce7289f4691e504d678ed

  • SSDEEP

    768:L/NxgKN02+kfiXWzwhJ5HOcLCRNQQmtKYB0m1MCyvAXm002:LgKG2+bXWMNnCRuxcYBrRsE02

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d78c3db91b28c880ffc69b266bc9eac2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e91aadf71633f3d49a6451ce0b49a6cc

    SHA1

    b668ed9e39863688c5040480b5adfc0deb4018df

    SHA256

    efe145776e6f76679d56180812190952ef0d1be2d018e9ad970c8e2db2057770

    SHA512

    85bb6d93f297410830c7d719bf3753677028aedbfcf96b32fe40c2449b218fbbf29f545253adc3c90154195b0d5fd617532e99f31d67dd9105974995ed703c79