Analysis

  • max time kernel
    150s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231025-en
  • resource tags

    arch:x64arch:x86image:win7-20231025-enlocale:en-usos:windows7-x64system
  • submitted
    16-11-2023 05:23

General

  • Target

    GMY-17258_0000719919_03_Credencial.pdf

  • Size

    315KB

  • MD5

    2335c899820b51857227aac61a69ace6

  • SHA1

    cf5fec4b57f97da57451a87697a567bffe1bf2cc

  • SHA256

    9a21bf416f05b521d0b0ccce759f4d3cb1e626d06ecb752cb4c4bd45e1f95946

  • SHA512

    a30f34f58fee7f5805c6467aa1461bf20676e61ae64812c4f04272fceca0f7bee229a6e50bd2e8117927cae8b3b2933858e01b9f838cf9ecaecb56763bdcf121

  • SSDEEP

    6144:2Ix9fICRS5Xop8Vo729pSRpyHz9Q7UK38vDHsXi+vp:2Ux1kopqSIupyTi7/38LWi+vp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\GMY-17258_0000719919_03_Credencial.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1824

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    df9d47bac7aad44e08b46c58e4b814e4

    SHA1

    0b5f1a4782519041e1a7324e14185811188c6048

    SHA256

    b9c74f550f8ae4b9cd2b0fdcd4e61411040f649a81c8e250dcb54e1c678dddb8

    SHA512

    5a79364786dac87f919ca276e7a3ceefc3c74a9256fd1b987cab7e897ce44b03136e1b76821a124c853858c9657f5c65a3ec35c5aeb75dce48deb85eb152a7f2