Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    121s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    16/04/2024, 20:43

General

  • Target

    3402d1dfb731714d10efe2ee20d6584bd5eeca659967e0c4b71dbcef30fb4ab5.pdf

  • Size

    346KB

  • MD5

    5f1c96944fc1e8094a49f4e56184e22c

  • SHA1

    aaad0307d88b7f1fb5174786d37c71c4ed149e90

  • SHA256

    3402d1dfb731714d10efe2ee20d6584bd5eeca659967e0c4b71dbcef30fb4ab5

  • SHA512

    e6c5cd5a70fb7f0541fa202e739d8739b70c40e0c248846720b343d46e02665e72927b4c063c8d362d20d1383a9e082ea0111527a5b4bc0d5a587f6b3bd057b1

  • SSDEEP

    6144:LhCj/iO/D8XKuM56jQFyRsqPq4YLwdSf9tDThilBzhynAHqLmcOGd4:lc/iO/D863fwrq4iYSltDThivEfFa

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3402d1dfb731714d10efe2ee20d6584bd5eeca659967e0c4b71dbcef30fb4ab5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2340

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    36b56d59ad7eb35ce182bc9938323b26

    SHA1

    6af869bd1821f3253bceadc3547ac8ca5da1464a

    SHA256

    659cfd40e003b11027239fd912e87d3880bef47441815ce8beb22591830a06d8

    SHA512

    e973480035da8f4b1655fb1bd9feb4c4d5e718b4b6f7c619e9290e0647eed0f690657e4677b18307d14d985e86ed256f72c1c034e110d10903debc4506bb5508