Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

e8e55aec32...18.pdf

windows7-x64

1

e8e55aec32...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    09/04/2024, 01:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e8e55aec324b42939e045cee7ed56974_JaffaCakes118.pdf

  • Size

    104KB

  • MD5

    e8e55aec324b42939e045cee7ed56974

  • SHA1

    899f38852357ba3dcc8e0a53632b22d453fabe09

  • SHA256

    096b0040017ee908ecd5318d2fbba28c4b85965feda97a2cc0728de6b4b955d0

  • SHA512

    47da0bccb6f002f3ff4c5293bc4fd5d7bef40915eb2b0e1eb1d6ead0f0f30ce88a3d6bbb0370742eea7f6fa2882cf96ffb766a1abbd678b727a0ffe65f84a6ac

  • SSDEEP

    3072:pgk5DOezXPOzFbCaqMPZh3VdK8Wve0nSu7/KzaAm6:PDOwPOzFh3PXVdK1BSGAT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\e8e55aec324b42939e045cee7ed56974_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c84be51cc52b00af37c2a59d9812999e

    SHA1

    4b0176a79637b8e9d53606ab81af7c36e45c2cea

    SHA256

    9fc7b23cd8299da798d9de99b9808fc923a19e9d1d49aea9abaa36f66e6e8564

    SHA512

    b9cc4ad387e03b28e2bb04ba7fdb5989e25f68daa2d7ef631cb43eb82de5d76f1825f8b9de3cf050b87eb8fcea39481ddf36ecae441986e83589ad008ab62615

    Download Submit