Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
94s -
max time network
17s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
24/08/2024, 01:59
General
-
Target
3c1c4ce5512871455106f5480672ce00N.pdf
-
Size
474KB
-
MD5
3c1c4ce5512871455106f5480672ce00
-
SHA1
6ce53772d0fb08496cff7532fe7e5765d1912ed4
-
SHA256
b7917e1016370cd9a8019ed3f4954a4d3f084b024ed171a4077b7c24a4db0a51
-
SHA512
78840ff032d8a739b14ef20c360435ccdbbdd8e3896592558abd2661996d6f56a97caaa819c854ae0e804317fb83884cb97229bc8ffa8c1f8ee486ccc0176d10
-
SSDEEP
12288:+BXfLbdfqUIuvxULWHsB2Ow51w5Pw57w5nw5fw5o:+BvLJqc2WHLOw/w5wZwBwtwS
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3c1c4ce5512871455106f5480672ce00N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD513e8a2a92d52fc97b55307da7e884180
SHA16482c26cbd1e2c411cd4103163c4ff72b4a87a3e
SHA256e8af102d2ead9e529582e4072b87589abd8e7aef30191897998f29894b3f578a
SHA51257cf295c58470e01edcff58acf542ad886962fe9d9efc44217665047931f4daf0bd98a2e2d023525bd589c402f6898b8621707e203baeb1b9541626e1fd20fd2