Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

def6612c8c...0b.pdf

windows7-x64

1

def6612c8c...0b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/03/2024, 10:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    def6612c8c9e490e6301b721ec61270b.pdf

  • Size

    35KB

  • MD5

    def6612c8c9e490e6301b721ec61270b

  • SHA1

    bdc2f8d47ee50d20d38f9130dee2b43ebe5e4fb3

  • SHA256

    93dde0e8d700ed1df082564a8a2022ebd8fc11ca8b43b238079fd97ae83346f9

  • SHA512

    66194f0570278f4cfc63b3435b96d43b65a9fadf4e7eb2940292921be007cc71f89dc699f89a858034ea54cb93fde97306b2e6bc39eb395bbefd348a607c4193

  • SSDEEP

    768:gf5uZf7i3qvssMpKk5dgPX9h/UBgGMYjtdz6nroe:2Mm3VKkUz/UeGMYZB6roe

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\def6612c8c9e490e6301b721ec61270b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    304e844da0deacc0ba56cc34cbe943bc

    SHA1

    3d8b7fa77903e7f3be335bac5cdfed3d7920e585

    SHA256

    ca8afbe3e75cde926aa96eaebc2e1528e4c0ecf2549aa9e671ecac86b284804a

    SHA512

    056ea731c7d819e57601bbbd4ab1f6b625cf6c692b0a0dab2b48a718347def08394d22006d849044c74f5bf1cb9584edc6195fc423988cc03e3fb22244fa17a7

    Download Submit