Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    27/06/2024, 15:16

General

  • Target

    167c06a0d7837940bb953e35f73148bb_JaffaCakes118.pdf

  • Size

    73KB

  • MD5

    167c06a0d7837940bb953e35f73148bb

  • SHA1

    624ae0e50be98c4a2d6ffc2b4871d730c58c6e44

  • SHA256

    572b0158c1adc084321a96e0877e30cb6ee108ee0bec95898b9aed6575c2f037

  • SHA512

    037d38f863bfa7942aff8a6260a04d120dfc37b76c222bba6c590e2b7168a37f8037475fa6f6bd218fa8f205730dfce136600dc7ed6fafa874b229e2be5e654a

  • SSDEEP

    1536:B8foO1WhaHDdWklZXXENIVNMRMBzmEUyUC5SVIH0IKaoQ:8oO1+aHDvlxENIA0KEUyUCkOOlQ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\167c06a0d7837940bb953e35f73148bb_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    994b9ca654a130e0fb712ec460020a4d

    SHA1

    2c3472ec97b5959eb1e698613924b8829e2739d0

    SHA256

    0c7a9fb724ffe615b22b85bf0fbb5832daea8d113c2101d0327e57f465dee11d

    SHA512

    5dcfe07eb6028ced0b4c68a933bd8cafe4327c125f2e93226b7fd05537834250b349abe3ccb098bf0f47e737810dd5a8135ffefbd6b38b81220a2cebb47f3f66