Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e050b4b0b8...cf.pdf

windows7-x64

1

e050b4b0b8...cf.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 00:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e050b4b0b8a6fe71198d2755a9a9ebcf.pdf

  • Size

    85KB

  • MD5

    e050b4b0b8a6fe71198d2755a9a9ebcf

  • SHA1

    9f6d4fc69fcea72b6efd3c460a5c3b87e69b693f

  • SHA256

    b64b4b56da66f121966f3a5197f603f6fbb237353235f789ea6cf44b9dd0cf42

  • SHA512

    17dfff2a9d9cc48eb5a4f734bedb0741ccb2f8496c2479a92df738e872c67d62e03b552ec69612d26a608afdd3e5a87c81181f12ea34779f542c71208cd0a8c2

  • SSDEEP

    1536:DjEu02IoQKzlD1L6a0D9PwcaVBnjZiDs08GaqhkIWGpOKCWQzbGFg3T+li8WZKT:HR07opzWVuVTijNKKOzbGy+qQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e050b4b0b8a6fe71198d2755a9a9ebcf.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d092207ec8715cca0c712fa617c5debd

    SHA1

    22a5edd73358b8279f70ce72eb7c0d19e307b026

    SHA256

    d8e7ba9c4664f5e67f1d624a6606d787e7b2709d9b2d79d6d36d1238eccb3375

    SHA512

    99a672ca4bd4d6f58365dc08c77c94bc627d35bbaa9fdc5227a26e088e2c1e98d12d9cc2740ddcd96460a52bb4277c34233aabcf55f9ff2ae71462c9f2636dca

    Download Submit