Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
9s -
max time network
0s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
19/09/2024, 06:15
General
-
Target
Delegation Letter - AT18.pdf
-
Size
345KB
-
MD5
6b9a85e606c6aee904e93fb6fd97b3a2
-
SHA1
8703ac9f84508cec4151cfaad7f1ac53b63e4c1b
-
SHA256
c87d9eaa8e338875390a23f9b45825a022703ab998a4679ac34c2335d497c4ec
-
SHA512
492a68dd81c1039dcc9096b95bd5627af7527f162d01ccda254c762177978540cbdf3008bfecbc725891cc3e470c5be0a77f65d42080f8f433f306514252646f
-
SSDEEP
6144:DjTVooku1M/RBTtS022jeVfo991dtrjqZbqcJh66OguGk9ABJ/:3TVDG/R9b22SWpmZbNcGkWBV
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Delegation Letter - AT18.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5bdc1ee69158f13c6562f09363bacf8a1
SHA12956f9a131370e9b02dfa2a8913ff2c0e02a116c
SHA256341e662b6af7441cbef8d2c523cbb281ac4733da280d2f2143f02d05d6f6041c
SHA512f0c0b185ed5c469589de56569a8b54df1a93da41564a115b300bdbe243505bbd1a06ba07aaf52b99c25b4548b60ec81adb2a3d3d89fdaad6a078d57ebddf8fd6