Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

24a98e8de2...18.pdf

windows7-x64

1

24a98e8de2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    04/07/2024, 04:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    24a98e8de29e7fe5dd8e13ae73eb347d_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    24a98e8de29e7fe5dd8e13ae73eb347d

  • SHA1

    54108880b344ec7f48d7afe69c763d82271df572

  • SHA256

    e8d468b763301c0625e24c3f3fad3314fa3f097947b60a6f221185bf1eba934f

  • SHA512

    f8ff66487b9f140f88e86a56ba775cee4d2dfe5419e4eb4608e296cee1828a5cb4d2151d3f6b43b107558c94395a4bc08e8f0065078a2006621771bc1f16bb8f

  • SSDEEP

    192:FPz4ULMxLIKXHsfyxrwAKHZ+vsFRGf49qMChaMJer9v6hjqfn1w5DoXHge4BnY1i:FPz4ULMxLIKXHsfCrxKHKmRGQ9qMChak

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\24a98e8de29e7fe5dd8e13ae73eb347d_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2984

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    49bedfc4b4033fa37cacf081907cc73a

    SHA1

    311ba28c79722f08be77056e07cc3a112a62a0d2

    SHA256

    e1babe3d5f3db327496846ff68731d7fbdfb87f0779cb25eba0511573fa6376b

    SHA512

    dc3df65978b1951e852e5b793d8a7cd6731221625081fcf4a566e53832cf4d0a5146416f5f8f6d6364fca7b5febeca113432eae23acf297fc0a806c66fa45d92

    Download Submit

  • memory/2984-0-0x0000000003020000-0x0000000003096000-memory.dmp

    Filesize

    472KB

    Download