Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 16:06

General

  • Target

    266dffc94a0bf4bc89838fb7558ff7de_JaffaCakes118.pdf

  • Size

    69KB

  • MD5

    266dffc94a0bf4bc89838fb7558ff7de

  • SHA1

    4806331398da25613ac007d6eff28161e742ed3a

  • SHA256

    767d4569d01d8dbea3f295a707fba8756dc4eb5e08ef032586ed4a2ea0def920

  • SHA512

    a3475b506968fc3f51ab892ebac6777690b9cc1ebdb70b90d9f7226a4769224befa7dbf7e96dcefcc2b48ae27a2c89b8fdf45687b5b08144135f7eede5185706

  • SSDEEP

    1536:THdwzoWnB8qKPLanwYYtW67jKWxApOG1VlXMBGxy:rdw0WnaDEXYbv3G1HXMcQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\266dffc94a0bf4bc89838fb7558ff7de_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2124

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f472068db673afd8b98930bd4814e25c

    SHA1

    39483a3f95f8b80de0995ea35aa03bf402bd4998

    SHA256

    c4f8cdb33a162d0bfa63067b7005f9e1dbf4cb98537ac40ca2a203c4377098a1

    SHA512

    b3158b320fef63879e7253e5599ac1665c075abc2be30ce422359cb58f3a27636ef20393ed773094157e446b14da1c091a03a7b686167d80ccb3db8ceb27f2ea