Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

11/04/2024, 12:30

240411-ppntjsbe68 3

11/04/2024, 12:26

240411-pmmhpsef5v 3

Analysis

  • max time kernel
    31s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 12:30

General

  • Target

    2.1 PERSONAL/CHOCOBAR FRANCO DALMIRO/CHOCOBAR FRANCO DALMIRO.ATS.pdf

  • Size

    247KB

  • MD5

    c48dc874ef26509c54b4653b5131676f

  • SHA1

    de4d1335b47482942316a9ad67ca3f8ff1f3755d

  • SHA256

    9d3981f23dff2d72caa49d748bff548d1a83e8866685df9588f9a4faade674c8

  • SHA512

    8c26dc4b963bbfba0e7178c6802098aaf1d8efa1e794b7f168f852f28ed5fb0e3977323dbeb5004c9d830ccc4e2b44cfd5473b2886ccfb1f9bc2efcae54e1ea1

  • SSDEEP

    6144:0bzHFwisyBcHOpLl+wYwLzy5dackDEFAgV4lO0u3m9T:ozHFw5ccupAwYwLzyrackDyslO0uWh

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2.1 PERSONAL\CHOCOBAR FRANCO DALMIRO\CHOCOBAR FRANCO DALMIRO.ATS.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    74052da924c81e9f76b261124d8f581b

    SHA1

    2282d2ea0c3313a464cfb716db4961f02efafe72

    SHA256

    31aa50bd8cfd973afe94cac07eaff82a932f2f04dfcc6fa834071fb95f8ac493

    SHA512

    4ef304dcc3f7491e763c6d1c40cc3402600d27454632da2a6ad5f1112cfb751a40a2eea1866e91051536e879b21a2ad117c60f0f8c8d6d480316c4e249cfba41