Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e8702236e7...18.pdf

windows7-x64

1

e8702236e7...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    08/04/2024, 21:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e8702236e76da8cab18598b73df6b5c3_JaffaCakes118.pdf

  • Size

    32KB

  • MD5

    e8702236e76da8cab18598b73df6b5c3

  • SHA1

    5794ca24cb32508de05fbe7deb8109ff398981b3

  • SHA256

    4226e415bc85cc046bae7210d1c654f817126fc2b4cae28615d6ccb7b13a6b04

  • SHA512

    c8cd6d96865e0ced3492c8cc6ec02be2384b9d1702ee08f6c6a92161456ac9bc2f2ed35253197ac2f9fb6abcfdc6b0ce651bcbd894d6eb724a03bf9a5e846534

  • SSDEEP

    768:EqjOw5fD7vDZET0i/2EyHyqwZnOdfpI7OVCuunJgC:E+bSt2cqwZ+S5JgC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e8702236e76da8cab18598b73df6b5c3_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2884

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    825f7bd9050b4f47a91ba1d342b5f3e5

    SHA1

    f42be23ba000357106d373f04fdcfea0351d9c52

    SHA256

    139a90065383d6dea3c33e3d22d90e306fe80922686015971b8b2b8b6a08acc2

    SHA512

    e685b092dbdcd7c328c6b4713408819f563cb1c169b6631748ba6daa9b99ea616a4ae4258104888c9df04632b7b09e38bd45ca68e01e323debb5c47000db9086

    Download Submit