Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

fee1ac5f74...18.pdf

windows7-x64

1

fee1ac5f74...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/04/2024, 08:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fee1ac5f742387b0aeccca9b63c5d597_JaffaCakes118.pdf

  • Size

    96KB

  • MD5

    fee1ac5f742387b0aeccca9b63c5d597

  • SHA1

    046e0ae376fc12f908ab6fa001127d59c4b58d41

  • SHA256

    54a298e64b51faa4c4a2aa36ed80ba60cb31a65ac0bb9787bc54510a10ba8b93

  • SHA512

    458734ed9ea263c6c5aea3e025e4d02fcbd2c482d6acf31ecfed3325dc8f774c0b5a3f5123a00a2268a1a67acde8d6fa6ba55a948511c63d9c318266cb731aa0

  • SSDEEP

    3072:vQO1r7ChCoo3IyAp+//RjvdM4u7k2zJh1ctS:vZGgkyAUXtzKOY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fee1ac5f742387b0aeccca9b63c5d597_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    afe0c5dd321c3652ca6d211c2cedfd46

    SHA1

    319500b15bab6af6c581826e54ecb8cc8941f674

    SHA256

    1467b70804f4482a6f1f06a2b4efdc63585f9d361e24941829020e19f44f8fa4

    SHA512

    1fa3ae4ffd436201581eb5998117d9a5ab9e5de06d0bd8537b8cd820c6da9e96018e3a39edd77c19d37c146c1410b6c689808af468a121a4a3aff465c6b46dac

    Download Submit