Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

f803b72184...18.pdf

windows7-x64

1

f803b72184...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    18/04/2024, 12:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f803b721844d571ad93cecc3ebc14e97_JaffaCakes118.pdf

  • Size

    83KB

  • MD5

    f803b721844d571ad93cecc3ebc14e97

  • SHA1

    2c1a144e1a0c762004e06b43150a8af5dca7b876

  • SHA256

    9d8d2c5d3ca7cab9f548df60595f67c6d0225efb961f0345efca2bbfac58067d

  • SHA512

    1304e59cc0d5782d4efaf1b3854c5b1313ebfc6c34c9ca617d0ceffb7ad2228c496be2f69db260036b8c93da9233f281e430b75eef19b0fa0c33c0e3b5fd4024

  • SSDEEP

    1536:+SKJ8edo/0nHZ8YLGqzxdVmFH6eE0sU+P+9gJr98NGW0aEUSFIR0ed0WxApOGzMr:etdo/qHZ8YL/xvmAeEXx+9e94bR0wV3L

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f803b721844d571ad93cecc3ebc14e97_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2120

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    390d5e040b424360e304a795da737c8a

    SHA1

    8a59dc4896947bce16d398f4b9554212250f8068

    SHA256

    3f7bd8f2493609691f5e9c4b61d9a4661bc509c750506df33cb6267809304f2f

    SHA512

    e0232c09a1190615956ca917e5a25c4188abd67402c51c51a9aef2fe3aec9d70a6d38e5338539e5a7bedce5181f84556e3aceb3887ca8a63dea91403094cacd8

    Download Submit