Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
94s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20240729-en -
resource tags
-
submitted
03/08/2024, 07:17
General
-
Target
696880591c1ccb140b3640cd2ba342f0N.pdf
-
Size
31KB
-
MD5
696880591c1ccb140b3640cd2ba342f0
-
SHA1
589a0a969630105378c69b375d8e6b9a1d361d2c
-
SHA256
542051ec846cf67ec4fd824dbce84921ce270e61d399a6178ecdd11e546254ee
-
SHA512
93ad5eddb0de701a351dfe368dff3b8c058d7326f0b121bd497ff1d0ce59a556a9c0f4c8fa4313173e5cc5f1fbb00ade21a03a7608c8948b53b7d2a8d4a420e3
-
SSDEEP
384:9A+eZLuZBAcy0yCG/lZTNcF++HKl6fsiTI5s90BdWQBTr+EQ:heEZBk0yCkZ+HQycs9+dTY
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\696880591c1ccb140b3640cd2ba342f0N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD540777768fd8fa96a6e8d6d8ad87161d9
SHA14b7c233b9b6d38b85150b05cd1e1e7bd4a00a4af
SHA256f186e6d9b2f346d86845ac160eeb180077da6b4d240eaecc09452d267a3f0792
SHA5122cf3f137d256cf7a728cc8acd08cf5a15d1002e2f27867c90ea15e29a1a8950ab555a527f2fb353c8d4db66b36c0f60c9f206840d8cebddecd68ef260ca28633