Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

6

3a25d57fbc...18.pdf

windows7-x64

1

3a25d57fbc...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    11/07/2024, 17:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3a25d57fbc5bc49cc8969cc3ae80a359_JaffaCakes118.pdf

  • Size

    9KB

  • MD5

    3a25d57fbc5bc49cc8969cc3ae80a359

  • SHA1

    73cc6dd69e47570a06ec9e7d8f4ec1be7f5866ae

  • SHA256

    fcf3bee748b469af5156160ed3d85d9189c436dd39b82acf089bdc9e5ab23b3f

  • SHA512

    ae8fd29cb1353974d475a40989da9a645d9f990dbd3f3f17bdf5a03792f417cb4d930042ced2ec5076ca4f8824782bc5f7cc830b6e4d0c9d6846327d939b7d0d

  • SSDEEP

    192:hFPz4ULMxLIKXHsfyxx1iyKbhRJk+ULrqQFqNNeWtVMrCljpaTETt+9ntz6Eayt0:hFPz4ULMxLIKXHsfCx/Ku+bNNntVTlsK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3a25d57fbc5bc49cc8969cc3ae80a359_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    09d24aa1635cbf67d5d527891ba2f5ee

    SHA1

    36c676a05b2b55c6af73592490004729a0c3edb0

    SHA256

    a42519e5e9a40e61b9892e204acf2b7441ddaf1ba3aa17332da991b7e6258bba

    SHA512

    c11e979bf5c6a2e64a0c0ecd3b4bd3847eac910f58af81968865e684bd7229960fa0924d4c0d8f39d5d4a1629cfd45fd504ee88da62b6b2f2702659e1cb9d2bd

    Download Submit

  • memory/2384-0-0x0000000003490000-0x0000000003506000-memory.dmp

    Filesize

    472KB

    Download