Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
94s -
max time network
16s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
19/09/2024, 15:55
General
-
Target
f7acdec9113b97acdf19ea3d50700b1affc12b48c46ae93b90b71ca6d664472bN.pdf
-
Size
33KB
-
MD5
7813af491be4d0cdfad22c315dfef6d0
-
SHA1
0ef353ca4a057e105c69a193d6c65ef5e53c57ed
-
SHA256
f7acdec9113b97acdf19ea3d50700b1affc12b48c46ae93b90b71ca6d664472b
-
SHA512
c4e9bec19da7b91a7152eb37bd5a65f84b78ed8db37b3191e95ad5935a67abb744c15fa6e323139d628b72212a7887d79dfcc1e8da13f1742c84de3647115e8d
-
SSDEEP
768:VWFbbEFiXaMXUWFRCVgk7yj3vN4ubBKh+uVKF:AbOgkWbCuxj3vNBKho
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f7acdec9113b97acdf19ea3d50700b1affc12b48c46ae93b90b71ca6d664472bN.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5106f30e6e9fb547feec6e0f4b24f7f79
SHA1414c36521b006770ba39056903b09d94e9211b49
SHA256f1377f96fc68176f860e007d28b7711405602a49a8282a605696daac14a7a85a
SHA5123926d11b13a9617920484b19cd8fbb94722c674a3dcd753f60d2737d42c415dd91185908f20c9c68669e75970f320168cf81cc977cbc966bc7ff3be02c043706