Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

f74f34be11...18.pdf

windows7-x64

1

f74f34be11...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 04:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f74f34be11b6639f6d5bbd39086daf4d_JaffaCakes118.pdf

  • Size

    105KB

  • MD5

    f74f34be11b6639f6d5bbd39086daf4d

  • SHA1

    600d252a395b7fccce1b5cb9dd3eac9024b31222

  • SHA256

    a3a2dac082414d91165563c5ffed4e3f53da28ca4caa28c8e2ea501d3d1bb3ca

  • SHA512

    8c5d5e4d1e4f6810acae18c234bd12461decebe20344d779b3f496aaadbdae14ab651d2cbaf30da30b48bb2a13ed5b069329cc7f694e7d1f15964b52e944f44a

  • SSDEEP

    3072:3owb3XqxLskazYfU6UgcHxZ12JWCoE3dd:3pbqxLsp2BU1wJtoU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f74f34be11b6639f6d5bbd39086daf4d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    57aa0058526af0a75e1d4c53854e6a3b

    SHA1

    8eecac52bad86217aa27e0f6a35c6aab190e2bef

    SHA256

    f6d0e0548987ee34b721498236cfaae36afa542bc98370a71727f38824ccc730

    SHA512

    bbefe7f8d56ad8e2d528390e19a165d4f03edfc063652b1d30077784c253d0daa3aa895ec6e8d9774ada31d1eb0326854b86c24c3d7c143917146eeef874617b

    Download Submit