Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

02adb2d232...18.pdf

windows7-x64

1

02adb2d232...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    123s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    28/03/2024, 10:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    02adb2d232bae8340eee7f74ae6f05a8_JaffaCakes118.pdf

  • Size

    49KB

  • MD5

    02adb2d232bae8340eee7f74ae6f05a8

  • SHA1

    7f05fe5b452d5dd251f4be86628928f07ad69956

  • SHA256

    c803deb56a76dada4813f19abb78d2a2a35215a0928cb9f8df1484e5d6437546

  • SHA512

    9b0bbe5da899347f8054cbfbe863c5bd052f8e5755c02aa26148b52e3f3021b6114d25a1dcf6e884144d6d7bf3ddd9b3e1b2611fb03368e09a43a06020021979

  • SSDEEP

    1536:+mPWVYts8iYSI5GWSHRhGoNi+dCveBTq1MbrhJA902:Tns82obvo8QOEq1MBKR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\02adb2d232bae8340eee7f74ae6f05a8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2132

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a18801ac35512a7d92579751aa09eee9

    SHA1

    47cab1e719b6f83e7fe1e1e61d1ad89730b2982e

    SHA256

    f1fd4bc1a835488c0342a55e83bcedbbc3e6989cb3ca3a940311158ddc5a55e5

    SHA512

    cf2568b2d646fa81f47ff839e66b32b8edda7aad7ab1d79561d5e7ed4e1bab8c5a67891f630dba3bc67144c61880159a522998af52a82026532f4f9ad6544ca2

    Download Submit