Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0bb7865edd...60.pdf

windows7-x64

1

0bb7865edd...60.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    95s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2024, 21:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0bb7865eddf6484f973f790075195d60.pdf

  • Size

    82KB

  • MD5

    0bb7865eddf6484f973f790075195d60

  • SHA1

    7ce91157e7d893cf75f5110e3cfcf606fb4336ff

  • SHA256

    14b3fb6c692c55be24765ff4af5b5e56a1ed762899b52870208ca20bd973e651

  • SHA512

    2c42332775b7be7a207df5990f65586d56075969281a1ddc875309bd6f3ee78ffc1040544309ee98d4dcaacdb0437593289f73e0e3fa925fcbb0c82e03a22590

  • SSDEEP

    1536:g7fRh8nSm7rmTyQF5cB+KklWgRsotq0FOEngPgSXvxHXEIiLYnQS24MOpdP:cRh8SrTyQFi+KS9ynmFSXvxUIiLYQSJV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bb7865eddf6484f973f790075195d60.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1596

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    03d6008b62e58804dd971c2d3d550c5d

    SHA1

    7756d1550538a73d89e861b151b41041db51f5ac

    SHA256

    9453c5950c5cec2ca42585d5bb1b235181bf9a249d703c67d638206a015efe50

    SHA512

    d87bb4ef86c35b5d42a79265a5b35846825b08ba2d274e4380d571a4585b3f08b75881fb5b7dec44b2094e420dd921b0c484abd553c69431d94bb2b579c73f08

    Download Submit