Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e06d514324...41.pdf

windows7-x64

1

e06d514324...41.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 01:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e06d5143245ead0e577929b019a19741.pdf

  • Size

    137KB

  • MD5

    e06d5143245ead0e577929b019a19741

  • SHA1

    5098d7f7d25c9f3cf6537c37b865b36315f9f1fe

  • SHA256

    775dd25206d2a177cf218ec7ecac3e75cd23fca9c9e52d9c110bf9db444bc974

  • SHA512

    307bcf92c43be3e0b94b0f4feb56e6c4718b9217604e73604202ff6a3f021f59941879025789d67e9bc4eec4245a4e8a59924f59e64ad6b982b7daf179ff9391

  • SSDEEP

    3072:8XDQDdMCWrxDvfA+Fz+zs7CnYOjAfO8EsKpMJUXXAJ+E:8sRMd5voHzsvfO8EZMaQt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e06d5143245ead0e577929b019a19741.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0269030c33b2fd4f97a74a805623a979

    SHA1

    56dce00dd4e53819b9ba08d95394869208d4af00

    SHA256

    80580d6d8bfd2c2cad59e8fbdb4851ecffcad1d309619d3ff9bc1d09ba838709

    SHA512

    cc92a5b91a9e66a10d43cc4dfbedbc9aae514ac164efb5e9c5825ddf073c7652ce4f47db0bac1b7e4852da574de1a32764650e308b1c0d943ddedde5d4b812aa

    Download Submit