Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

0513b8c1cc...18.pdf

windows7-x64

1

0513b8c1cc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 10:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0513b8c1cc6984d715d9f00542b67ca6_JaffaCakes118.pdf

  • Size

    2KB

  • MD5

    0513b8c1cc6984d715d9f00542b67ca6

  • SHA1

    b7e68e28877c18d6096515aa7e3cd0fbe5df3eab

  • SHA256

    d1542540b4a8e95ef5ffcb3a218d39436ac46c1e574226f3698559c66319a1c1

  • SHA512

    fed89aefe0e0858684dd1eabee94bec0f020de1c486513a69b01a0ae8ca5b29de57effa48ccfb85c8a3213584f2ef705b13793c54dfd385d353533b25a147a1c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0513b8c1cc6984d715d9f00542b67ca6_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bc5b92f5b0f8f7d0a993eb54e168d35c

    SHA1

    c4f21b124e3c1ff1013b46897034149f9f44ca85

    SHA256

    aa1d82436239fd424d42440fbe372cb68e6fe4c3371e69059aa93230be73baad

    SHA512

    aab678a7b2c64d9d5b76c3b82c6b4ee14e9884da06e433e38467709ab621e492bd0a8e1ed994feb70f636e8eaae0176f4b7c6a2da7dda761ee812b26d70929da

    Download Submit