Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

dc7f4a522b...18.pdf

windows7-x64

1

dc7f4a522b...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    06/04/2024, 05:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dc7f4a522b7f33ee8b5634fb2aa21b80_JaffaCakes118.pdf

  • Size

    75KB

  • MD5

    dc7f4a522b7f33ee8b5634fb2aa21b80

  • SHA1

    b93ab3f16d552d2090519976c3d5d2015a5bd4cc

  • SHA256

    e8b2a97fbbc38551c27a26be58facea8fabfef9346116a8385e1621f3e852302

  • SHA512

    e72d3c1471685a4ae3b6ce39ce5dc7226f895047ca117f6161131eb0df57e1b2546e8bd174c86ad07f2c40544ace5fb8c5d2fbbb4722a87e5c51c57acc3e8cdb

  • SSDEEP

    1536:BbhILt9UUFfz6e+9WZLnkm9GafuIphFaUHPmxygRYd8h:5hw9ie+cZLn79bhFaSmZRYU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\dc7f4a522b7f33ee8b5634fb2aa21b80_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bb955a0cb092ea6128ba80a187d1d4b3

    SHA1

    e34c2dd9b2b90e41ba58fde9841f59ec76be1772

    SHA256

    ee68100890fb9aa394e718c30b40bd171af609fc8947c1503c797cc92176ea74

    SHA512

    a2d4fc31c1ba799516eaf37109661cad00532db5072de4f5e5686eedce2971232c74d86161e1745728fa3af1aef80fcddd11e7e19de181245a97e2a0d0f05b43

    Download Submit