Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:10

General

  • Target

    6117bfb9b3980cf648dc0515f98b81e3.pdf

  • Size

    44KB

  • MD5

    6117bfb9b3980cf648dc0515f98b81e3

  • SHA1

    9f49d91e0733c518641a6719712c881391bdc72d

  • SHA256

    1d39858c90309bd2bee9f7f934d674e7f1a8815d663231b6eda5df3e7de6929e

  • SHA512

    999c10cd9cda7be91e9455752e519762167fe27aacc938a0ab2676d269435e4704c1e7e4761eb5cbfba84facd6357711233e3634f862354661fd9c3b13d77a77

  • SSDEEP

    768:yNMPyB3Bvyn4G3H5kvuiPogJIxLNxy3RRL2oPKr8+BEdu/v6dahiG6uCOR1lW3MK:EVBvyn4G3H5kvuiPogJIxLGh12gABDvO

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\6117bfb9b3980cf648dc0515f98b81e3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b3735012f04bb08ecdee0edc6ca1ffb3

    SHA1

    85458f06136e97f88f2718a81294135667e340fb

    SHA256

    37ff222eb509a7021a40f021889a8d7ab3c5522058790fcafa75a5f00e0fb055

    SHA512

    0ae774a06c76186ba4d7c45c82970c64feb2b1ed88707a064110c97888a25963774a76d7902e3cfa69eccd084dbb2583893f0f8bf3e0df73862506c17c9b129b