Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
01/09/2024, 02:55
General
-
Target
2cc25d8929ffb47bbe9efd451c20461569a446d84961b88551b3142ec02d6db1.pdf
-
Size
87KB
-
MD5
c80912258ce7c8e60479e73fa6b7da33
-
SHA1
903e74a234e6774d306818860625b535c40f09fb
-
SHA256
2cc25d8929ffb47bbe9efd451c20461569a446d84961b88551b3142ec02d6db1
-
SHA512
4318736ca8864d4e9a09c5b27660ccf71beebe98d37a51a8e4fd7b0254ab19bc74d074c0096add12065c8b8b15e14a9e500d16c3c3ba8742539cf19af81093e9
-
SSDEEP
1536:E7GibSnPHBzl8iQNvxW3sOyEe0XKYEfqSoARs5WOpOaZEW7JwdYYTncvJF:KGCSPHdENvQcOreU/jSTCyaZnCdYOncX
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2cc25d8929ffb47bbe9efd451c20461569a446d84961b88551b3142ec02d6db1.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD567af348283328582e9742ff1918aeb37
SHA19b025408087a885545251995b75ec0007ea74ed2
SHA2567c2d3fd6ca1ce785fd61c648869a1d13f98857aaf80cf49a3530fb59f4c7227c
SHA512cb07b64c611a5b75a7c2340a2effe1f98085f8c68fa2537ed125cb5a021484fd1a8d49ad51ae6644b59ff27058bff1ab441285a6596a74ffad0539e09d86be11