Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

fd5671a10f...18.pdf

windows7-x64

1

fd5671a10f...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    20/04/2024, 18:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd5671a10f73c9b3cef7dc32c6d6fcef_JaffaCakes118.pdf

  • Size

    99KB

  • MD5

    fd5671a10f73c9b3cef7dc32c6d6fcef

  • SHA1

    9d750d4b647f96323d0b5108183ae9e889cb01b3

  • SHA256

    c7192cfb54d75cd6374f3cd80a55665310fe3f2a8987a486af83963fbe321a65

  • SHA512

    f33706c742e544a05bbf83dba7cc277f42316296c3dbd96e8519df564db8950535cf992aa7d5b196cb77155f413a2b599a16219a3ea20627e22437a8a3211910

  • SSDEEP

    3072:MNVTGDHNohwsIOAZ7wS30MnFk1cRYvR97k9U2n:bVdLlEMFpRMt6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fd5671a10f73c9b3cef7dc32c6d6fcef_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e8e42d1698bf299184660ad488ac8d22

    SHA1

    8ed1aaee2ffb40330df4a4659c8fe1f227713390

    SHA256

    1d267d74025df3043c7f462d1635424366286ade6087b6e2b21395efa03e20ee

    SHA512

    11445b153a0b37613649fff76f3009dd0b6023019d07345483bb70491317a67ae0f219bfc68597e1d4f8817f9bd8c79ac65e30dc1971db0fb646ab9f05ed1eca

    Download Submit