Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 10:42

General

  • Target

    0b12b6faf66b7e665d9632625eed64bb.pdf

  • Size

    87KB

  • MD5

    0b12b6faf66b7e665d9632625eed64bb

  • SHA1

    77fe7a8f352692b7ed6acde8bcc25a327776c218

  • SHA256

    54faf31bf23c2f136c94cc984b0acc58228ec9b4345db38e70dd4ee38a36ced8

  • SHA512

    3237703bddf99f9320d4ba1f31686f9a18f52ea3b655906a8f77898b5d306d62061272287d66953e31ebc685ce8da668cb3135f0f83025cf5b1ba40d893c0afe

  • SSDEEP

    1536:vL+m0nzvgRJbk6XmmJEJ4r7ehBZVMHDOczDOz6PNWxnfDb4uaAwWQpOCNrF7p:j+5zoRBk4mmJA4HQa0fJaAfCNrz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0b12b6faf66b7e665d9632625eed64bb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2928

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    642acaeb20d03bd30b548ff839405e0a

    SHA1

    42c9f24276a7caa0506604ce88677778efff7d66

    SHA256

    42489b8a2570e864c42101d125867be3c24b4f501edcb7fd87513d8821def863

    SHA512

    74f916695a46ed536ffee3957617835e5ee955b0390cbbf2650e9dd903675b5d0d83e1a77e3bb3e2ae0aca90b7c801d51222768776039bf573a09f245d7909a8