Analysis
-
max time kernel
121s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20230831-en -
resource tags
-
submitted
04/10/2023, 02:31
General
-
Target
Scanned from a Xerox Multifunction Printer.pdf
-
Size
1.4MB
-
MD5
15d375bffad3d86e9581537e7cb1c084
-
SHA1
af3df2a460286b40c68c68c7fa78444d5db793f6
-
SHA256
f9f0d3e2fca62664183fca1c5d1e7331742e7357ad80e8c0cd21d46c46232b94
-
SHA512
f5a9c438ff118711c06b6b1dc4cb35960de5f1446f79280726a283e9e2dfdbc024b7f657be856fdef6592fcbf779f7dc5adfc860462efcaa56add4f7dea24242
-
SSDEEP
24576:dRCW1BdfYsKjL5tvt6gc3UCGo5GjB6MGx6/tGMv02oWtEqrVn:dEWvdfYsKjLW3UCGdxVL0pWtbVn
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Scanned from a Xerox Multifunction Printer.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5ed144123da840b2f05feae8ee718c104
SHA1e789f46435fd27e074089bed6bcdb697b82a24c0
SHA2567d0fbe200e54d32c3c1b61b66c7bcd6defd0771505eb50bf7f6022c192834d93
SHA512e72c63c332bb18624db6d79e4c58a1bb0c66b2645c99a46e7c3502bf64b94608f35f08b362392429d1fea8c6e8c342a999deebd92b17489fa2587315d1b0fb14