Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    07/05/2024, 20:05

General

  • Target

    2186b0edffc00df1b40294d2da54f989_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    2186b0edffc00df1b40294d2da54f989

  • SHA1

    8d0be38cc9a673c6678151731416604798b48f20

  • SHA256

    a79cfd970b9978d5b92b08d27b95c0f45d89508f512175ae4ff9f5c86da26008

  • SHA512

    c79f78cc9b273b1a043354ee2ec2b3d4d8e9335b0d23a6f78ab94506f9a37eda70ff8b44ae6e9e000efb25cd7173963eb4960b5b75f72fe819e3553779c66afe

  • SSDEEP

    768:1gGzpDMp+UYKos5zq0pBivITaweMF2vi6P12DAwFayiA8/JnvAV:mGFQpIwVGiK00wFgA8/ZvAV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2186b0edffc00df1b40294d2da54f989_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2184

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c37cec95634335cc9da43bd3b0856e22

    SHA1

    981bfb82cd2584284256a27656014c534ae47bc6

    SHA256

    9746b7253dfb8d07bffe4d6bb924bf7cda7da2ac141a410c9afd21c8a455411a

    SHA512

    b502c88201675fcef948d7221dfefcc064a75335d4eb06a36b456c12a3550de2edd0296db0993ef71f877f6cdd930bbffa689a2dc290d28f607e6b4aa5c41c94