Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

1f4f2f6327...0N.pdf

windows7-x64

1

1f4f2f6327...0N.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19/07/2024, 23:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f4f2f6327887c04e2373310747ce1a0N.pdf

  • Size

    68KB

  • MD5

    1f4f2f6327887c04e2373310747ce1a0

  • SHA1

    0c82fa01a7a94c4c6ccbcbd87765ce6388b13f73

  • SHA256

    bc2caf671e344659fd1f904a881b449a50bd4ba127327116155077460f319aa9

  • SHA512

    a8880178fa3828cffeb333ee8ad958be55612486e8fc10042a5e78e531c11624f04f4c8010a209bc8c29fee64ace79836a5960fee520edc3ada8c7ffe5044c0d

  • SSDEEP

    1536:DUJi8nVqNt+nmATGgfjXJIRwBzeW6HHRa3Q1j0ZGvQO:eVqNYmboIRwBQnEcj0O

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f4f2f6327887c04e2373310747ce1a0N.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    783b3a71f196b19e31ddbe51166c52b5

    SHA1

    5330de7b40ee375903cdb8e87a03cbd00cb875d3

    SHA256

    6862caca32b74fd5e32543a138f6cb704a188eef89eaf58c5c3b871c3665a40d

    SHA512

    423264953bcaaa6a93ecb3df0f3279bc57ae1edfb2a7126d4ceaffe6492a50e1c623e457ea001c18a4ef4c3505eccd1e086deb54e92a05cec49ac2430bed2185

    Download Submit