Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
-
submitted
06/08/2024, 16:15
General
-
Target
Joybox Lookbook.pdf
-
Size
1.1MB
-
MD5
8894abfb85f7c71aff34cf35fd7feb84
-
SHA1
a763162151f8211d6892faa475e1a133dc8d1c28
-
SHA256
bf4bc61b7f4653851e15f486d9498efc13e87f32c972f0d9b9f5ee082524ab24
-
SHA512
8d6a40017372aeb11ff9259ae17ca6017cc11dc00aa463554585700f5abd22d7ff6c174cf5aab59e8f63988d8858846ea93f2b7d209368202f4ad57348f37378
-
SSDEEP
24576:QhSRFLYCrlCwmM8LxQhLDlrkxCzzYPVI6k6yIwiCgNo8qT:qYFLLBCwxE+nlwxCenCgNoX
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Joybox Lookbook.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5d67da1421ba9e6f523042f7275de645a
SHA1402ca0211951317f5e6060c54f96091a83d9c743
SHA256c96468320ef10305e6918ac8b28dc28c236d8053be62123d4127a9f152816687
SHA5125ae51d7930c630c28604d7c32c5e7ebf0786ec453811b891cda8d13b5b6a56928987958e8dc8f368d5cf29831c6662d839629b82c6aa5fa536c0995adc354000