71ea1916e9f3411221f9fefb82ed3c5895d217589451fddad11b69fcafcab01e | Triage

Analysis

max time kernel
121s
max time network
123s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
12/12/2023, 06:52

Sharing

Report Analysis Logs

General

Target

CARTE GRISE - FACE B.pdf
Size

204KB
MD5

54c6246c136659e3d9a0830d3e61efa1
SHA1

75da7346e60187ddeff8f23de0b2044cd8d9d89a
SHA256

dd9a0cc8639225d5373104197194deed0f6af695a736723abaa79467ba217caf
SHA512

4ae945214e15ddfa6359de5ebd26a233e89e701910b3d7c45ab9eb5d87a221919a35898c1c97ea8f43f3c4fd0979df86676880afd3f390953a6ed88e74e26820
SSDEEP

6144:PD9Djxyjh/ux1oylZLHXZuFWRXID6n9pcWX6ClzD:JRe4xWIZLpOuIWn9pcWt

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2732	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2732	AcroRd32.exe
2732	AcroRd32.exe
2732	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\CARTE GRISE - FACE B.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
e1a6cc2bd0f7e66e20010085e4744910

SHA1
82ca3328c6a15f5d8df1640153eb857d4f3e0963

SHA256
7cc98c3cedf0cfd70b23346ad96df29773566fa6b089069bb84d3d0b73e125c2

SHA512
663f07b0d0e272cd5118b56d901c39fccf24a4c93add6706dd60702409068fc2ac7ce52b2c1f9e7e9d1b767d9533d49dab6e4d113ae19db6d48b64f2a33b524a

Download Submit