Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
01/09/2024, 11:24
General
-
Target
80be62acc362c4d85b9bfa6edbb435f6d2986aa9c41069660c50ca95a922efbd.pdf
-
Size
81KB
-
MD5
d33b2be0f1cbb8283238a0030f8a0f07
-
SHA1
8b598ce57f7a9af4c7715d01797055c987e5fff1
-
SHA256
80be62acc362c4d85b9bfa6edbb435f6d2986aa9c41069660c50ca95a922efbd
-
SHA512
435de03226cd7fcf18193ef68462a0fbc19f008a999e499248cb964359ebca336e71d0e53be590e80bff36681a70a5ecef71a0d88f20fb102af2172a72b5738c
-
SSDEEP
1536:+V1ew89rM+R6EMj8BGrD90ymSOtjDdA4xjjVCi2gfrQfwWepOyWW4j0dyQhyZy70:EQwIrM+R6tj8Ur5wSgX5Ck2dy6gCT
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\80be62acc362c4d85b9bfa6edbb435f6d2986aa9c41069660c50ca95a922efbd.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD582c010045b520dc0befda1c65b14f5d4
SHA15b8dc2119c885a336a6ac73717a2adc7dab02260
SHA2562963881eedc3f2f292e86a6d5d419a697294d146319e645ed87e50fb43700f77
SHA512c75ac1069801b90b667c8a83d11b417700b87059e694f5db45af66f026d4013eed58dcd86bfa22782854a8961f3b8df5e030864cafa19a5fa294f4135801046d