Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

fca002b59f...18.pdf

windows7-x64

1

fca002b59f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    20/04/2024, 11:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fca002b59fffa7035bb3073654805f07_JaffaCakes118.pdf

  • Size

    1KB

  • MD5

    fca002b59fffa7035bb3073654805f07

  • SHA1

    2624e2df91eb2baf6a498eaf8de35d606a0a5526

  • SHA256

    7d33fd50a9c052ed8c028719a7988bc5fc0e2c76368eea20f7a6e54d0cf2646e

  • SHA512

    ddf4701fd88fd82cd4a62432613369f79b2c840f765f2a4ecd22c6b7730a07a763c13071c42dd46a66f46c202d4369ba1cbabb28fffd2610b7c3875dea8e7f72

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fca002b59fffa7035bb3073654805f07_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    afabd32289e40a237f12dad5b3f9da7a

    SHA1

    2ce35ed3d47c945bacf767a839f1d618e8b8cbb6

    SHA256

    f931af7b734d4b7b7bef8b18f81d8397dc1df78a1fef55e2bd5029c5b13cc70c

    SHA512

    f594e98f47d4171e3b2e05d1c3e0a263f95947b1e23a8ee6d304451174c33e58e5061aa9e5f9f28324dbd60c6a57eba916b4e6421fbf72e883ff61c99cc1441b

    Download Submit