Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

f52b721a2e...18.pdf

windows7-x64

1

f52b721a2e...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    17/04/2024, 05:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f52b721a2ef7f4489974ee10ccc3e57d_JaffaCakes118.pdf

  • Size

    84KB

  • MD5

    f52b721a2ef7f4489974ee10ccc3e57d

  • SHA1

    f041f422e28f465246a05f53c17e00f7e6f71c1f

  • SHA256

    d5d893479ef83628a27e69ca20f04b1fa9885b0e4ba94bff0d9be40ca42c93ab

  • SHA512

    053766c6fe09b4422c4798a321157e844e61bff0c02e091a9b527d775eb3d9430c9da54891544eaca22d4a00b9ea84561399dc1771704ba7b4f478335fe4f4c9

  • SSDEEP

    1536:295NxT12MU7oA9RMjANqEhuC9W4wHOtXoXhWXpO/IVkp31m:0p12MU7TOjU5u5r/IVkhs

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f52b721a2ef7f4489974ee10ccc3e57d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3a66c8ec88b47b89be46fe3c16b2722e

    SHA1

    585fd413c9e69a428509f0a6ca4aebac1d166921

    SHA256

    cf10800ace9c4f5d743ff739af1924521ee0219c1ac0f139fc70269381ab014e

    SHA512

    b11ba16d6d424aa76ea31189e0cf3d8b9ef0d11d260875fab032d7b46c1018187bf1427d99047090ba02b39aea8fdc5ed9b57b3cb9f5f1f5d6ea0e84a61ce241

    Download Submit