Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:06

General

  • Target

    1029da1da5e2ad4df15b15d61b510b68.pdf

  • Size

    69KB

  • MD5

    1029da1da5e2ad4df15b15d61b510b68

  • SHA1

    43726696ff4b6274d7b751a1c8a17798531f4434

  • SHA256

    d3284df1f0abce6be3278ac7ef036abf3ef20a7f6483163e276a72bcf98cf328

  • SHA512

    856eabdb9843e4d736647ec1273a5d445ec62e2971c6a67035731c8f4884e525b44b5e115dbd7b056a26bfc3971d87d678e4c2a47c27be3b1944effd1fe40b24

  • SSDEEP

    1536:N6VtW6kpZ5D49vBB5531VZeYWHLUo/gR1Zp5PSc0Pu1y2ogO/kiP:YVtWxpZ5EPB5dZDWrrErSY1y2ogO/h

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1029da1da5e2ad4df15b15d61b510b68.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1880

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    20bca76bc577ab4c20a217f1ae967a6b

    SHA1

    36368bff99167d1bb57ad7882c506dfb8e3edeb1

    SHA256

    844cc1f0570a976b37f4b026a97289059c2f5ea7cd35c1604f6e160c4d4e164b

    SHA512

    1a16f672a0159b0f4554c76239af443570a575502c2e26f9357a7d4a9a5ea620147f9969ab2b60245b1cd90ab46edd24a05face254451046276d3a3664f4409b