Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/06/2024, 04:25

General

  • Target

    0c84e3cf13a24446fcb658eaeefcb902_JaffaCakes118.pdf

  • Size

    82KB

  • MD5

    0c84e3cf13a24446fcb658eaeefcb902

  • SHA1

    a1abe5d4145c13dfab940aaed0f6bc352c1b65be

  • SHA256

    0d2b637abaf6727ca15de69b5f5c392ae4e47b686cbe84eaf587ce63ebd33844

  • SHA512

    b330c4f5ca7f968e08cbf06652df1fd91f5936b4bbdcf69db3399e44a9214df84da115bd1b4e232946927ba63b236c3dc273194106492a64aace9b737569d028

  • SSDEEP

    1536:xLVIZPk2fcluCy0WzrxweZbYo6WX97J52aoKWOpOZyWu+pXZS6QrC2zA:sZM80Wa+97ntovZzpS5rCH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0c84e3cf13a24446fcb658eaeefcb902_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    3b60c8319a31bd0b965a9fb8b82199d2

    SHA1

    74f99fbf47df1f8b7ba4eb3bd13f8dcfa8be9d14

    SHA256

    e891ffca6f54b5017c6d15fc59929f0a081c0b120b362925bde316739fdaa42b

    SHA512

    797a41be8a56ecda55fdf9fd313df0af013067d15ee2c46bd29b7bfbb4a2407833a9631875fd7c18337c300180904749f8f998cf742c6e53d1fa93b09410b80d