Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

646d1907d2...18.pdf

windows7-x64

1

646d1907d2...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    97s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    22/07/2024, 19:07 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    646d1907d2b03e35b4128f84375e2802_JaffaCakes118.pdf

  • Size

    72KB

  • MD5

    646d1907d2b03e35b4128f84375e2802

  • SHA1

    7b5d53aa4ad71f2d2f7c3a5e55789ed75ef177cd

  • SHA256

    c41e6ad45fcffa08b8db465d6c85da401e8c60d76fe85cac0119bbf29996a9ba

  • SHA512

    2b424948aa670527f9234b7650ca4b87bcc9623d96548c9261a56228beacfafc2adb462c55106ef3014afa5809871213dc3ceb76d0f8cfe5db44dc1161c4758b

  • SSDEEP

    1536:vIxjopgxP+l0WOSEn7Hlual2hTV1Vm0Ydf/wKtToy7:uxO1pkblzlOTHVBYWaJ7

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\646d1907d2b03e35b4128f84375e2802_JaffaCakes118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2164

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4ef89815d1c58065c5bac81e7c22fb90

    SHA1

    64a67b1722c45ed8478c886f54928213ca0e3567

    SHA256

    b8b16576a67c766fd262368b5339071d37d0b4225ddd30e069819eebc4499d19

    SHA512

    b5a9520310dd8215c6668d7daa8a665a6b55c86a76febdd04c2828916a5f30641fd3c371a949d348d9c5334f5d028f75049bcaed9c4938bd4918c21cdf19b872

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.