Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 12:21

General

  • Target

    34b1d94d828ff90c8168db23001317ac_JaffaCakes118.pdf

  • Size

    76KB

  • MD5

    34b1d94d828ff90c8168db23001317ac

  • SHA1

    b07ac6738da5ff035f4cd76d1b824762be266c0f

  • SHA256

    59dd57f9b820cf759c467934270bd812deda01115dd9ce59210bd2ef838132b6

  • SHA512

    b266de5949caa11306b1bd445dd172aeb10eb775fd3672ac9af99573dfeb11d98489fb1deeb7e9c1899b3068ce77e5cfc80f94323a533178a0e5a8e8c7d238ab

  • SSDEEP

    1536:zzu+XDaWwT4teX7M+2tIAYgfI61wEM47XBabWyU6EOI+PO+ZkJWcpOm5pUE:zXD+ktztvYKI61wv47Xk7EaPO+ZkAmr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\34b1d94d828ff90c8168db23001317ac_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2680

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    59e44a5052736ba4e1f46ce72a43e618

    SHA1

    fa97eb71dd02666983c6577a2be1865bff088c55

    SHA256

    173d79871f45f772400fdacbd1e5e5e490295ff5dae25825df95bf065880575f

    SHA512

    640a5d0a6f59a0dfb6079e96a9ad758623227534ae7d07b9fb1f8077d9617b9936f7331f5b4a323adffdbe6fa09b5675083eff5fded09f5436cc123a19dfc985