Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e1fd90ae04...4f.pdf

windows7-x64

1

e1fd90ae04...4f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/03/2024, 15:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e1fd90ae048db483256df281a8bfdd4f.pdf

  • Size

    87KB

  • MD5

    e1fd90ae048db483256df281a8bfdd4f

  • SHA1

    60da347e77246d54f680660eecad65ad15f64143

  • SHA256

    12f4ec254bb54da32ebe5dd3a8a8adaec9457bd494d56823ee8b4a97c9a88af3

  • SHA512

    52f323a9e2d8051a1f4cb15fb229300d58d94a28f4de76bcb35df4f3efedccd775d68094d8700c23f9ba15831acbb19a60bee243e2530f506f9417c71f45c24d

  • SSDEEP

    1536:gyGqHIJej+zwvdc+9k00KVtvFnJW5VwwuTLTz3wuXkT2WIy9HtyeehrbCDWUpO79:NGqHI9ud/XVJFngww0L3AGkl9NuC279

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e1fd90ae048db483256df281a8bfdd4f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2368

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0b5a85d9a7d7d8b290a2608143367d06

    SHA1

    a5a86a78df44ce8cc8826d9abf893d7a930a1e67

    SHA256

    e8951e8be5f9e5b3eeaf5a842b5209b3508481b156965ddb50d1dbc97c8aabb5

    SHA512

    d0ee34a26bc2d47396431fe733fc2fac05d5a80b5979d6c01058d8878f7494eb694ecabb16d8c1729ea9ef09eebe3943bb7aee0bbec33e04b509a6979108c5e7

    Download Submit