Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    25/05/2024, 02:20

General

  • Target

    708ece00804a9fd2a99be817b4d2f34d_JaffaCakes118.pdf

  • Size

    46KB

  • MD5

    708ece00804a9fd2a99be817b4d2f34d

  • SHA1

    00aefd67e2b2c934a06afd642ddfea5443951334

  • SHA256

    47c23234a9444f826b9092aaa0d49d117f540f20d11db2708c327b086deea878

  • SHA512

    075405ccf8797e26dd0a90ebfc0d7805629f69e016aba8a00cc21c331fcdcfec0170fa502ae1206c41cfe1ff7eec801bb3c88eef2641a590beaa1b81224d3b67

  • SSDEEP

    768:ZgGzpDqKyUmAePOAcby7vkdTxYrB/JfydieyoHH7A0+2o1qfMM9y33Pwlkuu8z:aGFueCJQv+2oE7Qwkuu8z

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\708ece00804a9fd2a99be817b4d2f34d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    06836fdbc31aa0aba6db2fcf6d025bc7

    SHA1

    d9fc7c05bc2668b539ccb3d8d90ba3caa2c5fcbf

    SHA256

    f6701879651b04fea289315a8dd9324019d2686685bb026bed418bd8e2a786d1

    SHA512

    226ee505a7560c7331ac3f62e45d4045f3b4a075fd05bd5e2cad0f77785fc0eac94717a9e76f00eb86f4d40cb2288c2760b4f887a7550c17c7d440c40c5b9df5