Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    22/05/2024, 09:53

General

  • Target

    66db5bbcc562fb1ee9bf4576a9f959b8_JaffaCakes118.pdf

  • Size

    39KB

  • MD5

    66db5bbcc562fb1ee9bf4576a9f959b8

  • SHA1

    bbd4d3b3647279d869044c7da20ef52a1e789097

  • SHA256

    571729d2757ef3b27c173302041f08ab6ea50261a7e9472857c0310a59cb43fe

  • SHA512

    8dff2e800cb7db0522c9dd756b2946a551461e08fdeb1f2c7900b383e36f074645c0c5c6bb44765ec8c3333eac49146a730862b862c16b06f360c327b4fe916a

  • SSDEEP

    768:0gGzpDRM1eD4X9vBHm2hFwck0k7y34eQ5nY6q9luOl8xRv0tYXw2:BGF14BsWofm9luG6RvkYXw2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\66db5bbcc562fb1ee9bf4576a9f959b8_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    9ae4725458fd3641a127b4c49ced4e5c

    SHA1

    69edfbc8ecececa8c191d2b4c49e870e42f41571

    SHA256

    a86869303d46b4c01346a9c9ddaeaff040012c51bcae2014e681fb54dd0afc69

    SHA512

    2dc3318d0902cac9925d34ecf1907948e05db2b9f0cbe0bc4aaebba8ce07fa1b695c208e79f0021b156fd5821c3a062877bf3ff6018bc050dc04151d7d465938