Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
96s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20241010-en -
resource tags
-
submitted
17/10/2024, 11:51
General
-
Target
8de02287feb5826e449bc04245cc97a5409e4fb1462c9ed98caa9f8eb2eb5fa1N.pdf
-
Size
293KB
-
MD5
989b1c7a753381c2fc3f665e7afa09c0
-
SHA1
83ea143686937eb1cc243b7f2ca5518209c3f616
-
SHA256
8de02287feb5826e449bc04245cc97a5409e4fb1462c9ed98caa9f8eb2eb5fa1
-
SHA512
e003f9400e63c1f34257dc5d2ac776a9d8c1cc5dd8a26c84058208bf28d96a148f89cdc42f522f7e88f99a1bc5badfa160b9d8542deedef7a2ada2ef86c7ce92
-
SSDEEP
6144:blxm7qrcZ7oAGFJHAMIgnuBGoWdAI/lay1+M88+KwjuF:XUqrcZlfCBosP0N8+Kwq
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\8de02287feb5826e449bc04245cc97a5409e4fb1462c9ed98caa9f8eb2eb5fa1N.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD51e10bae7ed7e3cb7bca06e80496675ff
SHA166b8300c389633dd23fd9c2d35d8309a142ccece
SHA256333facc99b6a84301eb7a33d5edcf435b11cbf5ceb173a247245178e307b96f7
SHA512c0a838fc2ee69f10c58a0e40bc272a4b52571120ce0449f9b427c577c0311b42e99804e172f4a3802009f4097b615079ea285395c1c6979e214a6344c4a3340a