Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

9fbd38f7e0...AS.pdf

windows7-x64

1

9fbd38f7e0...AS.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 13:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9fbd38f7e0125d8da8c70de5dc238f50_NEAS.pdf

  • Size

    489KB

  • MD5

    9fbd38f7e0125d8da8c70de5dc238f50

  • SHA1

    e63c29040dbe856aea95bed7f5bbed7443c45795

  • SHA256

    41782fc02c1e3eb2428383cddedf6c5bf39424ab2f006d75ab76caca2143036a

  • SHA512

    5601421e10eaef0777ff0291e7e76eade8156b534d695bd5074a1f02a87d8ed000b6f40f080dea470f3991673c0aecc3e5d46ead4d6d1a24bc7289dc97c51026

  • SSDEEP

    12288:O/MqLaSgMHShlJpuA2mRTbG9//LMRf3IPWH9BLwkSdPiGI/oUo:ZqmSg3lr/TbGiBf3LwkOE/o

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9fbd38f7e0125d8da8c70de5dc238f50_NEAS.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1808

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    efd36e8c6227b384eb26edd00c67618a

    SHA1

    65775041054cc9c479a42c41aea6672684097ab9

    SHA256

    46ab84a63bcdc9d6456c43964d1782b91dd43e96532a334d8b88a116b9fbe7a7

    SHA512

    fcffae78f3cc1ee47e97d953f44d4c87ab3aec0bae151b621bfdebe219dd4e66a47748108afd665617aea1e51dfe5bc3d8b9a679a371f884e3f702a5e23ab89c

    Download Submit