Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
18/08/2024, 23:56
General
-
Target
9e8a8466923f63d962a2cea0146cbd6492824253250927583fdbef6b9b805e92.pdf
-
Size
157KB
-
MD5
8e0f185b32bc4841558a7a4212e39830
-
SHA1
d60a858fb10ee2e3fd6b3d2ef760325c555df6d7
-
SHA256
9e8a8466923f63d962a2cea0146cbd6492824253250927583fdbef6b9b805e92
-
SHA512
121a84466794cd08942f8b6ce430d8c1fcedc4ddd817d58c4fd06d2aa833961e1b372801693ef87fe44a33d24ea88ffd9163993d20f62b1a60678fc09d1044a3
-
SSDEEP
3072:5S3XJz/hQC9bUzPMPgCdf/tJ9oBVb3M3TNwi5DCemoRoXcHHHH:Y3X1JQC9QzMPgYlTaR3M35DJdUe
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9e8a8466923f63d962a2cea0146cbd6492824253250927583fdbef6b9b805e92.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e0944c3b87986d49516279ce1a5182c0
SHA163a4faa0297a9b76c6046d5ba8f9a2e233d87080
SHA25644fb521b0f89a80149e285cabcf5e89ea631fae23ae5b05e9d0f0b36c06d47cf
SHA512f91d5024ef28287ff8e15eb759b86999975cfeed1293aa3d631b013a8a773fe7a2bdb09950588bd77a16d466340acc8d856a5f47129d3959ad7f77344a8e3082