Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11/06/2024, 13:18

General

  • Target

    3613109bb79de37ff122061c2393e530_NeikiAnalytics.pdf

  • Size

    1.2MB

  • MD5

    3613109bb79de37ff122061c2393e530

  • SHA1

    8ade6b076cd43bbe6c665015be60b5688e957f1b

  • SHA256

    2187f9ab67b3216c4354414510bd032e631477c5d5e95cae77816f54c375bcda

  • SHA512

    7ad0d24df8d8b0ec3ecf8e899e3ef61bd9f14e1add395549b242706ee7fb8bea1a735085b4ff4c1f45b4cf4f0b9f41970fc09d384ecfb1ee5334f85c7f8230db

  • SSDEEP

    12288:3MxYVnP0puAI0oREeWVFeWAcS5QQbDGIo2kBNOUANnWun7o3d:cxGWjeWaWAcXQaLBNOv7oN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3613109bb79de37ff122061c2393e530_NeikiAnalytics.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e085987dda6235c32932284bd553edf9

    SHA1

    075eb12b666b8078b73ce3c64d5c4cd6a5bb3f71

    SHA256

    3bad4c6a2477916defa96c94dc2931616916e2e9aece8a0f1824bf0e67a41cf2

    SHA512

    a2501ee4073e8100ec7885618cb5038711a451160945eb077ccd459d31aba00a4f35976967a2a3325278eb096a69402d5957c971fca4a0e96567bdb6698bb9d2