Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 10:44

General

  • Target

    0bb3be8ebb77649de190edafcc1880f5.pdf

  • Size

    45KB

  • MD5

    0bb3be8ebb77649de190edafcc1880f5

  • SHA1

    397ded3dfc4f20fd8ae46f38ca83be450cfa4cfb

  • SHA256

    287d111f4e10e4a126e61ccbb512c7b7548c68f7fcda447b8d198baf1e760103

  • SHA512

    0d9738f8d7b708f67c79a0446f99c797d34c65168eef618e49693a77f0b1ed7904c2050abcecae24e89f84ffa06781d72b1655e2a307efecc391289c303a428b

  • SSDEEP

    768:gHhTuUQbJ1mQnAe0vlJ+mq3eA/0JGn5tgxL8PyaVYNCRQ79+3MTRO:0SHFnAzvs330k5tgZaWCRmTY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\0bb3be8ebb77649de190edafcc1880f5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2380

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    be30cac04c2e9ae7a3bc17ce25a12864

    SHA1

    6ecce153211ff0a9b73401cf6ef7d15d62fc21de

    SHA256

    0d8c26d6dd990f226e3bc158828e487d64ba5822379f1db91b4f2b80f4ee0756

    SHA512

    837cfca68c9438f9437183367eecd930bfdb0ae712f39a85acdee21b509219d7f0ef3f0988a77144d326d5790a2d4cffa85ffc8d8335704265e210038a4491a9