Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

c6700763a3...84.zip

windows7-x64

1

c6700763a3...84.zip

windows10-2004-x64

1

Ad=Factura.pdf

windows7-x64

1

Ad=Factura.pdf

windows10-2004-x64

1

Resubmissions

11/07/2024, 13:38

240711-qxh4ps1cna 1

11/07/2024, 13:37

240711-qwrz8a1cjh 1

11/07/2024, 13:35

240711-qv6rzsycmk 1

06/07/2024, 01:49

240706-b8yk7sscnr 1

Analysis

  • max time kernel
    240s
  • max time network
    240s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 13:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Ad=Factura.pdf

  • Size

    25KB

  • MD5

    4e73ccde2aebd3c0cabfef85df255b35

  • SHA1

    614e0591d5cc9eb1681bf78f14a8e79762a871e6

  • SHA256

    b8ed2cee54871fe2541e094ccf34465fcaeecbe4a9cb708da05d01cb9f7a1b73

  • SHA512

    e763982f2dea8fb8e1365c1f7ca852056e99442d18c633030dfb633f1d0acf7972b8290c967a9b5242aeddd72de5578fea0eb88cba3ac5051cc1ce046f318ec3

  • SSDEEP

    768:MzvMWRP4A+reEEWJuX8OF6L5btU0XlaqoiJXOAGr4OeWQVRSn:JqNEEWJA8OF6L5JUKnGrLt

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Ad=Factura.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    24a65444a81c63223b0e38dc64447765

    SHA1

    a3eaddc5428632fc83e509208c05deb47be89816

    SHA256

    5cdf7ddec18be67675b828af432cad73520916bb12c518ebfa9cd08eec3bfb25

    SHA512

    6aa024fd4b33ea94180302793cc318858cc78f248c0204f4cc846dd309f53940aea8cec9bf5ffbd5e321b112129fadcbf19c166b8818499a578fc4ad9b06b647

    Download Submit

  • memory/3044-0-0x0000000002910000-0x0000000002986000-memory.dmp

    Filesize

    472KB

    Download