Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 13:24

General

  • Target

    322977e7b90453fef0e1576239c95e39.pdf

  • Size

    79KB

  • MD5

    322977e7b90453fef0e1576239c95e39

  • SHA1

    e7c8119b57eb71043ec5c0945f6d3bb6707b3d63

  • SHA256

    6ec0724bbc7efc68edd1cb3cebd57bd85e80e420e84ec0d0f316d0d9ca95d97d

  • SHA512

    eeaa9a424a5ba8728cec8a2c2a2a543159dbbd960ab5f7bacf63221e6b70e2127378bec896497f78aefe1c0a04f7d392112c74f5d6537bf3e887053835ea0601

  • SSDEEP

    1536:TZIJNPaTef6A4ciaZWDIrwUXe+68TRWNpTUjibWQpOCoWjGLebVEPA4:ixaiyFciaAuXe+6SMOjiGCq3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\322977e7b90453fef0e1576239c95e39.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    5dbd4faf3f85cab69dbb2b15c7380446

    SHA1

    b13dcbceb5292acd8cd250a723493e35fd08c799

    SHA256

    2074c5552bcf7e0581fa25fe8b926c95b9c840533360156766e1cbbec40c0523

    SHA512

    260f05e42ac6f95a151b3819bcfb5e72548a929d59ce24eb49f9cfacb1300f6eefd8613270de28b9e0e34ee05993c6d97903442af2544ea7126463b52e743efa