Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

11/04/2024, 12:30

240411-ppntjsbe68 3

11/04/2024, 12:26

240411-pmmhpsef5v 3

Analysis

  • max time kernel
    23s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 12:30

General

  • Target

    2.1 PERSONAL/CHOCOBAR FRANCO DALMIRO/CHOCOBAR FRANCO DALMIRO.EPP.pdf

  • Size

    338KB

  • MD5

    4777744d3e1bb81c59cb60fe6bfc7601

  • SHA1

    4716a0f48d90dcd42d3e5134bec600d8bb64001f

  • SHA256

    245fccf944edb44c77e0ea894e9056bd5a7b0679f9f5275f02bc2b2a441d52e6

  • SHA512

    7bef5dc06f31968ac893840c2dd6af866e5cfe6ef84813d9e167444884f0ce7e15ee5eaa19890133a257db8f0d997da605d8022fb77e5fded1e3d3fb33a9efa6

  • SSDEEP

    6144:J64m3VVjlTptHcyGkSphS50Ilz8Amm/r+64C3ld5FNaih319tzINL0BdrW7zloF6:Jdm3nhTpiR37S2IlY/mz+OH7hlvINL0c

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2.1 PERSONAL\CHOCOBAR FRANCO DALMIRO\CHOCOBAR FRANCO DALMIRO.EPP.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b28782082bc0426f1a1fbbd2ffda05f4

    SHA1

    b61e045371ca87118b65106f02d2b8bf0e697939

    SHA256

    4a92f6717343c506e1dfe08be7dae49f26bdf6ac1106692c76b471eee6d11237

    SHA512

    1b1bb45a5445f6c3afbca1c94d4302a0ac49c76cdbc2e500d128c619446e0e176a630711226c1998413a55419c92e998aa78721d0c3b7a73b5511dbc8df9ca6b