Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e05e1debe3...1e.pdf

windows7-x64

1

e05e1debe3...1e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 00:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e05e1debe37fb76e8629d3c831f76f1e.pdf

  • Size

    79KB

  • MD5

    e05e1debe37fb76e8629d3c831f76f1e

  • SHA1

    a9dde73944cd841188ffa6692a49f53fa39fb369

  • SHA256

    a6f1da4c571527f41d7cf9798c6075d1d927d68becc507b93146db0b627e5955

  • SHA512

    7bed79e316b01ce1f0b3b717da6fddedbc3d46d9b906844a7958e931e967d8a9fad742922e264ff0f9ba52b7c2715e6a3e5358bb3b50da86cc47a7929921f03e

  • SSDEEP

    1536:aXMc3eclP87rjY0PDcqGsWjQRJW6pOu2t9QCTe6T:+Nu+P87n5DnQ0qu2PQmf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e05e1debe37fb76e8629d3c831f76f1e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1916

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    55dcf6b8d4ef64578fb9609a5636e1a4

    SHA1

    df5402b2928baeedc9deee6f1312dfa5de632f2c

    SHA256

    e8cc0b40fd014d19b10e2d2cfd177208b8fd53647c819146154a7b0e8fdf1f6f

    SHA512

    dcfb446a1197c0236f0bda947bcd961a0bc69736cf032cd45474475aadbc8f1df5800f6ba523f3e1d0ec5d8e40f83a90f3e1a2526c05b9f4ef962b17b9874c9c

    Download Submit