Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1c61dc9943...cs.pdf

windows7-x64

1

1c61dc9943...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11/05/2024, 16:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1c61dc9943939862cae111b001772ff0_NeikiAnalytics.pdf

  • Size

    188KB

  • MD5

    1c61dc9943939862cae111b001772ff0

  • SHA1

    4cc162179f58e13bb2618a9cb2cd7ee6c8f66497

  • SHA256

    f8ecd72d33b4c4767a71ddeffd46d04e939b4c36293577cb7535163c5c07b79a

  • SHA512

    1b5f76ac97f809ffa60390ab5d9eba58000f9ced1f5d32e56b77358f4f9b9df9864adaeee5cb1d60b9b5fec1d826841d15bfdfc9990c16f24f7f511ff6d2e795

  • SSDEEP

    3072:a0iu6VzDLg8gvNgsKWh9HLpUdZlOomkF6imVwIhmXZ:a08lDhgvusKS99c3O4IiSkZ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1c61dc9943939862cae111b001772ff0_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2432

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c089740dc7c842668ae9330934129b42

    SHA1

    46f047ebcfc3a1db60c62eda5303c33e4fad7be8

    SHA256

    70466d19215e77c1618e9c4961fff6d7484850901aab89f6bda8ebfa36098b3d

    SHA512

    0766e4a8d3aa653be2cb0c03546318b6696e22c5f471bd086b3f951d816c482a4d5905c99270b0783be75a8ef50d47f940b9957bc6d62aa696b65513b2a9414f

    Download Submit