Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0e1570618d...18.pdf

windows7-x64

1

0e1570618d...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    02/05/2024, 09:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e1570618d8a3fddc5e84e93b485e364_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    0e1570618d8a3fddc5e84e93b485e364

  • SHA1

    5b11403b9fbfab025c0b9f48a08fece6d6af7195

  • SHA256

    64abeccddfe34c4aa240e036c519995a0c3940a91750688379504462b88cf76c

  • SHA512

    bcfcd1aca78bc87d0ab4073eef45314a33dad3f2652791e53d19445e7de55f971c82a906e63d5c03bc953b1d1ecb9bd8c01e2c7ffbe2b9275d6a5e2adf175c32

  • SSDEEP

    768:lgGzpDGnpbop4oAUBMXlEFuxHHHHHqHHHNCH3cnDxAKjIeon6ibYWrprtjY/WCeK:2GFyAAMF6cDxBk1rtjY/WfoZ1/eHAfRH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0e1570618d8a3fddc5e84e93b485e364_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    119f774fc5b21a769089f37315bd44ac

    SHA1

    5c3ee66cb91a4d59a2a495ac2dd93479c1e6afc7

    SHA256

    e46182edd28202434b87f66d0b7dea59c6741427e4dbcae6cdb54c7652790037

    SHA512

    d79cf7fdd9dbd49490f0f73dbc837752cbee741f346705d7e4ed768b37d76151211b588d0a61cba75c0bc6fcaeeaae4160e73aba1612b0b80abcf299fa961367

    Download Submit