Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

28ab408afe...cs.pdf

windows7-x64

1

28ab408afe...cs.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    12/05/2024, 15:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28ab408afe2931991e251f8762a2d000_NeikiAnalytics.pdf

  • Size

    36KB

  • MD5

    28ab408afe2931991e251f8762a2d000

  • SHA1

    647049e5733ccaccfada62318b8a2434df2aa612

  • SHA256

    73a4c6f76b4ccabb8585befb4103a630a1b9c971be22732e15b2b8cd39944274

  • SHA512

    fa058d74a694b6a6b5ea47bbf94c9c6a525b7965949fa1497f08ca8ffefd546e0046a2e24266fdc952ce7b9064b02838101ae609e9ab03d278832e2e3d4845f8

  • SSDEEP

    768:C5XzSmxm/e4AwAMKwLBpq23qZoasXtXri:aXzSmWxKwNpx33XtXri

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\28ab408afe2931991e251f8762a2d000_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2156

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    fed85163737a4ab5c46a99a8103e3727

    SHA1

    38b2b72f95a75f9c072ea50a070c0b06f9010617

    SHA256

    4fba4e547e3b059bef1e2b921251ab2940f75ca528b9d8dc2c78f8c89814443e

    SHA512

    c5d03653cb4717def98e7c5854d3baf875b903a59b49871c3df04a4f5cd2e6a5b2e1e0d5b53f6f178b18bb07047516318e58d570ecb44a2f994cc62bdfc5be39

    Download Submit