Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e18dac42c5...fd.pdf

windows7-x64

1

e18dac42c5...fd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 11:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e18dac42c55f3670eec8be226b93d7fd.pdf

  • Size

    42KB

  • MD5

    e18dac42c55f3670eec8be226b93d7fd

  • SHA1

    2e16b968145802bdd0dd7ddd8b46e2a18b461c17

  • SHA256

    021dcce945c446a7cde3c696342d09d9213afefa428ea2a20388dded65a874ca

  • SHA512

    86098daac932716a2f1152f5b798f80938dbcd95e72b06cbed56ebdfe64473cdfef9e191c747a4487566a57705ffc049113e470297a91d622fbe9edd70511330

  • SSDEEP

    768:ukwfi6psjwT0tN63fSr/HjSCyc9dkuzY2TzsSn0rXQqH6:ukwWE0SfY/HjSCyc9dkuc2TPigqH6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e18dac42c55f3670eec8be226b93d7fd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    33160c9060ee49ab1ee4963738cbefc4

    SHA1

    ca8a63c2f5daabbc9444233521caf3aa82006545

    SHA256

    486ca6dab0d4ffd5e2fb757f2e477c1be6c6f7b4b0107c71a1e7a9f3b2d56c6c

    SHA512

    1d6beb63bfb1fd695380f312f4be20d3a35bc6b65d3bc39311c2f8152faa29a17e23992447f87fe5033f66aea19fbe599ac2e07e63e892d035dd65e907a1247b

    Download Submit