Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

02bf341f39...70.pdf

windows7-x64

1

02bf341f39...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    05/07/2024, 14:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    02bf341f396b83c37ba55559df2bc170.pdf

  • Size

    410KB

  • MD5

    02bf341f396b83c37ba55559df2bc170

  • SHA1

    c8bac35f739cf6a0f208443a7c13295dd8c48c87

  • SHA256

    eed43419cdfa9f83a4ce2581d253cde3e9288b6a336557c9cf4545d83431c91a

  • SHA512

    cfdd7a077b7ef00db3689ddce158a59f279a5eae64d3462a162562caa614bad6ad2fd2b00d7efdd5862237af722d4e4bfbac8ce49ac391f5f9f108199dcb4776

  • SSDEEP

    12288:0OIN5VVeHN7qMKLjzP7yrOrHk6w7+AJt3ElW:0OIN3VeHN7qM2jL2rt/733ElW

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\02bf341f396b83c37ba55559df2bc170.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2512

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9c918eda3e5315b9948a9f949c7c1a4e

    SHA1

    bceddb0c66075eb5cc0944ad1f2b2ad62adb4861

    SHA256

    46880c9ff8ecb0dcca66a7a5d0d6e0e585e27cbc42bcfe9f4f44fe44e65863d7

    SHA512

    5951d45692bd6e4ce69d8ffd09bdee7ce9e2fd8eec8a0c9ef36a3b4e422b24db0ef60426a90eb9e2081e8a9555d4b689ba37ba2f0280eef22cca28d428ef79b6

    Download Submit