Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
10/10/2024, 01:26
General
-
Target
363a3051bf4e9b56005299f47316dbb028f127e84c2d7990eec5f39d58634888.pdf
-
Size
31KB
-
MD5
854970c1519636b77b4245f7eb874b0e
-
SHA1
f833b05eb4447719d66e28df75e33ec8bec10253
-
SHA256
363a3051bf4e9b56005299f47316dbb028f127e84c2d7990eec5f39d58634888
-
SHA512
34e70d847fa0ec448e325c6e5e57204194fe5e314acb6eb6089fb08bc68899387f5a517cfd87e1d81ea9266fcf2309149714d6e43e5b5ceec700d45e06a5650f
-
SSDEEP
768:qgm01nZqw16ktmD5657ELeAhvug3xduvEl6CyDbl7/8vp4IjNy0xYmsR5QPkPUk+:qUmf6SvpEnQPyUB
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\363a3051bf4e9b56005299f47316dbb028f127e84c2d7990eec5f39d58634888.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD55173e2e007d10c3a3e1380a75ca8d94b
SHA1b0c7adb113851b6683b1ea46cb98b6bd9743f149
SHA25625a5e9208de8fadadabbb0c33c6bb33bec29bd99d0b4da6bc6cd2c6147105243
SHA512fd67144aaaa7bc250491e7cc712f4cff867b48deac46f45f044b8cc62b4102e010f0daf40b2506b59dc33802784e520555a3f018291e3ea027f8b51dfa27aac6