Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e0f9d3b976...a3.pdf

windows7-x64

1

e0f9d3b976...a3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 06:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e0f9d3b9763be4e015e69a888f8b33a3.pdf

  • Size

    77KB

  • MD5

    e0f9d3b9763be4e015e69a888f8b33a3

  • SHA1

    ce929cca41916689ef66e86a95d1d118b2babe64

  • SHA256

    931baebd87ff75560104162d924222101dd1345a263530628afc924607b4b889

  • SHA512

    35a51661a4b14bc8f357b1da9ca2e40f9177845b0af08008828ff7fba4da51abb9d35e1234243973a2646c1658f48ca9420605742e0c1ef4b95161f875f7be72

  • SSDEEP

    1536:cdlDauie+WaSnia89RLmyokpUfS1o20ZRLwFd5SIfbI2ijIWepOmcWvIrs2bpKMB:icm+fTNm4UXedUIDItjVmzI4UYG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e0f9d3b9763be4e015e69a888f8b33a3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1988

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d35933657e61c82b94dae62029b30c3d

    SHA1

    dd6b02075b295d8bcd13f29532558ed95425b44d

    SHA256

    9bf01b3849f09398e727cd2aaef3eeed7ba6277dcd9a1eaff307c2895a2d4ff9

    SHA512

    238367441784c0eaaa1c72be776bffec9068e01a8f88f1abb697a74aa56e5229212989c24f05b9a4af5291afdc6144b7a670b4bfc5e0838d25e169841a3d9c9f

    Download Submit