Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

11/04/2024, 12:30

240411-ppntjsbe68 3

11/04/2024, 12:26

240411-pmmhpsef5v 3

Analysis

  • max time kernel
    48s
  • max time network
    16s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11/04/2024, 12:30

General

  • Target

    2.1 PERSONAL/BLANCO GUSTAVO FERNANDO/BLANCO GUSTAVO FERNANDO.ATS.pdf

  • Size

    264KB

  • MD5

    ef24f24283d5a25a3bdc192856022e2b

  • SHA1

    89e40cd0fbe0d162c1846708243e661a4af4a3c2

  • SHA256

    40e655720e4daaf39f05f60a668e3773c18127927620dc7b115b4a76160b8604

  • SHA512

    04d10b7a5d06b8fab4449f29247e65926f4b2a0ffdcfaefb48513b155ec4866f1f734111eba4f309c5900218a6d16f5f1502d437581bc2166dc7de45f637891a

  • SSDEEP

    6144:5zOBx/T/O3Lzy5dackFnFAgV4lO0l3aHL:5zOBx/T/2LzyrackFFslO0lKr

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2.1 PERSONAL\BLANCO GUSTAVO FERNANDO\BLANCO GUSTAVO FERNANDO.ATS.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f1762e3165224cb24c9c4ea10e8fa92e

    SHA1

    8b03b9ae80d8ba992152a62117e8a5263412b4b1

    SHA256

    45c5e2973760a309b41cefc56f6a59389851977ab1821beed32cc7b2b5eb293b

    SHA512

    e3f53b150cb7853758f6a4b2de354bd49a5229ca70488b8853b61a05c0854c0fab22d6053734dcc6f120ef5947646128b43ef50fa514047b0d5a59731e394f90