Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

5

30900b63b2...0N.pdf

windows7-x64

1

30900b63b2...0N.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    20s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20/07/2024, 01:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    30900b63b24ae16a86259d0594ff0800N.pdf

  • Size

    32KB

  • MD5

    30900b63b24ae16a86259d0594ff0800

  • SHA1

    104015bf04c57329be60c17ee8e0f3a165998d13

  • SHA256

    d6a0f042ec3bb53f7c2ec3ac62589b2395d4adc11657ff10d9cd22a53ce8bb09

  • SHA512

    95fb2e3a950bb392e9c40f5d6344acd2f126b32acdc0a2a32087b3acbc55a8c074de1f725e9504c3456c87cff740863e41688fe761a781695007d1b375346a9b

  • SSDEEP

    768:ZA2d/6MCy+wFMzRKaujz3eS2cWROUT5xVWqiLTpcVNh5QMOM:pZHaaz3fC4UT/iLTpcVS8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\30900b63b24ae16a86259d0594ff0800N.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2468

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1bcfd752dbc54d10934cb4442ede41b8

    SHA1

    52c0d8ec19afb01b3a3eb5547049525be257cc4d

    SHA256

    23dd0f6d2216c3ffe16b63f11b201058f19a14948fcf2b0fd7321bc408989be9

    SHA512

    f01a4b9cdfd1429809a7d90b4d044f67e1b2b0b5af87c7017aa4d99cefc448f3dafa6cc67099466d468c7ae67c4f9703ea486ba6f622e58d163c54054fc75580

    Download Submit