Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
01/09/2024, 07:07
General
-
Target
df40437b7ccbbaf704babda4f04ee7a8df1f46669ed036c3bc99a8e390f45bce.pdf
-
Size
80KB
-
MD5
ec8d535a3bbc8a2565c0dafea1b4d674
-
SHA1
777e18e3179b277fa49fc9a47fd66823a5937a23
-
SHA256
df40437b7ccbbaf704babda4f04ee7a8df1f46669ed036c3bc99a8e390f45bce
-
SHA512
a7ff6f63b424ff06bca347d2fbf07bb3e42677e7f579761c6a02b24d42f3542890c4bb5284fdf3d7ccfeb759f1cdad3328a14170652e61c07110e0766db243c2
-
SSDEEP
1536:YZ8sXrDEqNTK7yVPbbKUVhMVV6oZKKoMO3wWspORGWIadBJYy2gg:q8GrDEqR1bbKUVSVdZhO3LRnmMg
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\df40437b7ccbbaf704babda4f04ee7a8df1f46669ed036c3bc99a8e390f45bce.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e1acd491c51ca831f27969d38bfb767d
SHA1274041e66d0e296ce2f8a2a006d520e61fecd5f2
SHA256ad8ce56276ae2c86e0b7141e5cac3bb7689e5f375ac707eab1b6dd094dc25907
SHA512247b132408d12f894250dfba5d0a37a2652eb28dc0ae0bc0ac0914a10b1dee7b8f749e8315a933094cfe8061e8349a88690fe0a76b50443b99ebcfaa2d098cc7