Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

de708774d8...be.pdf

windows7-x64

1

de708774d8...be.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    25/03/2024, 16:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    de708774d8aa5b1418fc6dc41480e1be.pdf

  • Size

    91KB

  • MD5

    de708774d8aa5b1418fc6dc41480e1be

  • SHA1

    bfaba8a3c2abdebcc4fc97388cfe8d6cdf5e97f3

  • SHA256

    670f6d1b64a123d52bce1a515850ff1eabebf0e3c281752b0e7b2eff6e118993

  • SHA512

    2de3c9aeee2d74609f7d2ed54ca4440c880bcde0d661b2875230c7a08e02ebc0522250551dd724e46dd80cdce7901b354c3e88e6f0b8d6bcf25c1e648da6b1c5

  • SSDEEP

    1536:v7d7wNkxipfFBRlp1Fd8yKn2+h8+fXSzt50PPx6m+G3uwomh8WuqyifiBUw4TLW8:p0hpfFBRX1Fd8++fXGU6iRCqyifiB4TN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\de708774d8aa5b1418fc6dc41480e1be.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1324

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d7d770f37d05d6ebc355eafa126d955d

    SHA1

    3a0d6a0ffd9e553fd84b99956f7ac77f74bd0692

    SHA256

    31c2bb59102776220bd11b4ab2f0bb035fa5f8c1d1417a688cb4881858950b71

    SHA512

    597d83cb03a1bfd6d8c9e499f113b29fbe42e03e36bc013d756367f82507edd913a7590dcb1fbf8d80cfae9d4b1ec6202e00a25c906bf75617d9087cecdf13ef

    Download Submit