Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e1113de5d0...a8.pdf

windows7-x64

1

e1113de5d0...a8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 07:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e1113de5d05622f6e46bbcfa887709a8.pdf

  • Size

    59KB

  • MD5

    e1113de5d05622f6e46bbcfa887709a8

  • SHA1

    7a964e01088c625cec3ef6891eeb7d48ddde150c

  • SHA256

    47675049dad627d516360021e8f8dc1e1537cdb8f02aa1f808712de6132a95b0

  • SHA512

    f4e45d74c213f9673e730da047b5a0e5c3136cb57f4b688a489cd4f21bc8eff54869511cb91e9dc08332cda4f8d3210afc548e4d5851a38dd36e1ea404baa891

  • SSDEEP

    1536:+581xNSKRfUwwtIVsTXaSmLMOdWOxIIIIIIhYgs7jBCkTcv:7BSKRswAczdLMOdWO5YgGjIkTs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e1113de5d05622f6e46bbcfa887709a8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3068

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    edd934bcaa38c173d408130895263c27

    SHA1

    b71a09514a4939f45c96343c08c01ce8e456de85

    SHA256

    e0dd1341eee5ea809c26980aa8460a676be801fbffb39118c2a4e2bce511cf85

    SHA512

    50c0954bd5f6e5a82161f9d3dc31b7f73b4f8fe2d57c0c40a7d1b87f47080b147bdf7067adead4a60d8b3f9e0f03707a8cd5752a1f6564862b6a3e3fcf24ebfa

    Download Submit