Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

31/05/2024, 17:03

240531-vkwaqaeg3y 5

31/05/2024, 17:00

240531-vjammaef7w 5

31/05/2024, 16:59

240531-vhn4mafd58 5

Analysis

  • max time kernel
    17s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    31/05/2024, 16:59

General

  • Target

    voice-mail.pdf

  • Size

    36KB

  • MD5

    218446d620cbb0c9968773ce3105e5de

  • SHA1

    d3e93af5eb3c19146079de19ede51cdda7a752e5

  • SHA256

    f3eb16b902849727bad69b0a408ed316fad970c6634feb9d718a9970bc821986

  • SHA512

    656c89b9f6f7271f262c74eab73f0c1ee228d1788af9c37ba3176130cca627068c1fb4896ab17351c9ce8ac8c7faebbcd97ebb71a4bbbf4fdbc08bccbca3e136

  • SSDEEP

    768:DObythkUnFcODznhi2bl49EQmEXjmjhjj1NmX8VoKj2YdwDyt:DOQw2znh1J49EhEX+tjX1CupAk

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\voice-mail.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1700
  • C:\Windows\explorer.exe
    "C:\Windows\explorer.exe"
    1⤵
      PID:2808

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

      Filesize

      3KB

      MD5

      e7f3d7344a25039e1416f849e1899776

      SHA1

      37ec9bf90bc9ef00f0e062ba6c5333e61b8fd2ce

      SHA256

      7e735fcf3c772cd2d49a0b8d3de9fbc2f8b8d7980352d1c75088daf2fdb37d32

      SHA512

      267a6a3550a21fb121a6d59abd28ca49b763a1ae97e5a13c90da2be084b299cdb6d811801fba0aeeb47f6a26ad335fbb024fcd4927687455e3ea293cd260aad2