Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    21/05/2024, 06:10

General

  • Target

    0d37ccd92d8b374e5c8ccd05d172719b044eecdba6e24c0f5f82940a4c358ced_NeikiAnalytics.pdf

  • Size

    143KB

  • MD5

    198783008dc9152e2f960139fd14e2e0

  • SHA1

    5fe817824ed3899590c2ae1708482d3c08e76e69

  • SHA256

    0d37ccd92d8b374e5c8ccd05d172719b044eecdba6e24c0f5f82940a4c358ced

  • SHA512

    aa8109dca543409a338facef14e8446158aad04fda3fe7879f9d618c6fd0ae221dafccf09976e0e648bced02dc37a2cb2f0bce2e2cffac71135972d48115fdab

  • SSDEEP

    3072:5tdaWCTPj1G9wRo4/mkH23gHZWK6KGGDmPlBwqYKwvSOdW7R8wwm:5td4F8wRoumkH2wH2fwvbVSv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0d37ccd92d8b374e5c8ccd05d172719b044eecdba6e24c0f5f82940a4c358ced_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ee40f1aef664f8f474287673ce84b20f

    SHA1

    66f8dcea70364f62f3d4eb3be8a7985e6597d475

    SHA256

    104356fe63ffbb2308fa755254a9e5ff207455587176ab828a619c7a8adb629d

    SHA512

    87b1d8a0c447d5bbc2b3ec23673ddccd94a6a2cd9cc09fae13bb3ed96530c7a8baab281e4d864b289a2ae7e8b311667fbf6115e99b01e864fa8dbea6d99b8b9d