Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:37

General

  • Target

    09c1d4349b6f27c25e2b0cafa77c0d97.pdf

  • Size

    71KB

  • MD5

    09c1d4349b6f27c25e2b0cafa77c0d97

  • SHA1

    ae4285de3b16edde0842ba5c4e5f554db2180ba1

  • SHA256

    82d6f3c151cc10abb32c1a22560c22451d830ec01eca3c228c1136a8282a2d76

  • SHA512

    288884486f02cb9fa2b12f5f0d6483fd1fb49579f97d702348e3de3af0144b7b115270a8179e9ffb75c7ce18c0c761a5ee315280a8ca5c31f88713498818aa2f

  • SSDEEP

    1536:4XWpR4+ePYSdyentusH7K9DH5zanSX/uqofxWnQW4aTxe7aWUpO77u9:N4PDdxtusbK9DH5zy2/EmgaQ717Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\09c1d4349b6f27c25e2b0cafa77c0d97.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2272

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    1682bb3804d3c8859399852e8566c0cd

    SHA1

    72171b5e1b3a0f5ea6c91b9664b7616f19cb52c5

    SHA256

    4c9a8a209b8d0798e38f6391a44afee52c93b15881647e218ab3f64087271430

    SHA512

    b1c8dd664148b4d8c1a9bc5bc62478bedb55d8db1a150759cdeed49588f5c110fa7a8446203836e9a4bbf267ef18cd60a1c87800b1301302479a42c9d13f990d