Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

df182cf4b3...71.pdf

windows7-x64

1

df182cf4b3...71.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/03/2024, 11:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    df182cf4b33443303db206140c32f871.pdf

  • Size

    89KB

  • MD5

    df182cf4b33443303db206140c32f871

  • SHA1

    88040ae22f428eba4f0df8766807d386680b37cf

  • SHA256

    3e3b6115564468fa43bba29bd1d867f8827b36bdfdc44a7444bd9baf8ee1f7bc

  • SHA512

    7bf58789f33ba7653a6ad3499bb8f3da55f1e8b0b45c045836a76c720c5c2531c1b189fe408483cd24c0969d6c62e51abec62fcefeda634b4b3dc28523e5a5ac

  • SSDEEP

    1536:1xBU3WtLHGMJR/BlsPgnOAmuTzRUU9ssDCvYl4XkG5iWGpOKCWG2ZASvlJ3iYQDL:2Wt7X/lrOADNjSQE0cK/Cw3iYQkM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\df182cf4b33443303db206140c32f871.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0c5aac58de11ca53a6dad8f74165fcf4

    SHA1

    ec52d10757d39bda2abfa1777397ce3127e6e2b0

    SHA256

    e29e5e65746a58f0f82a4ead7327efe3296d7968f2b8779a02bdbf573ffd868c

    SHA512

    e2d364f37b1fda29ca9303ec79547c22a0cc830ae87a34bde7eced221d5353c683e60c85103402dd99546b10aa0698c03762d1400f0bdf6a0e38c3bbdd7160dc

    Download Submit