Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e15953a876...f3.pdf

windows7-x64

1

e15953a876...f3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 09:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e15953a87618eedc47bfd24bb12f3df3.pdf

  • Size

    79KB

  • MD5

    e15953a87618eedc47bfd24bb12f3df3

  • SHA1

    72995cf8d0e6d089512da0ae83f83d82414741d2

  • SHA256

    4922ab4686dd0eb84a2beae3c3ba3fa46e857704a2a2038f21f852536b1672ed

  • SHA512

    c2376b74a11ec637fa3ae62c3bd488819f74a5890077dcb208464ea367a7e0c4e42d0af6b3f903330cab241596b20b343ce81afc751a549b18c328e6edfa39c0

  • SSDEEP

    1536:nSBRbl/w5Z/w4aDTr6a/lAA+myjsdQa1kB9SnfXuJ/LzeiVLa:ODw/w/r6a6A+mAsdQhLSfXE/Lze/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e15953a87618eedc47bfd24bb12f3df3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2144

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5936762abc7271c44dd3fd4b95ae7da3

    SHA1

    8b43ad7f66af41f10f9b8775accd34e291293e47

    SHA256

    c39adc2f4bdb691cbd7e45ffe177115fba9c1692a3263b3714c0ac915bb5aa15

    SHA512

    24ac9a15af7823b63e64ad6dc5d410ffeb328a30199ab1df1c0ddbb836265805bd850ceaab32620502dc46cee3ed35066fb7ef47328552c17a3ccb773390279f

    Download Submit