Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:51

General

  • Target

    688b4c5ea2aa91a1a8fbb8b5dd8a8c27.pdf

  • Size

    35KB

  • MD5

    688b4c5ea2aa91a1a8fbb8b5dd8a8c27

  • SHA1

    5b40b9260894475b63dcc2383f49a8f382709080

  • SHA256

    16f12bb86d6a4bcab046cb351e79abf98551736c039b7d52f48628aba5544c30

  • SHA512

    f01346cb9d9b75d4504b06966c08dc47a3b30c06598c9e6043b55e29e5849edf85936478b34c8c5a5c223704988e9ed2bda5010ac05752a91ea6288fce31539c

  • SSDEEP

    768:A95sQ4fLgTw1GmT/UY91QQ8RfcWj88VoY23M:ot4CwlT//XQZpb28

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\688b4c5ea2aa91a1a8fbb8b5dd8a8c27.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2204

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          8798080f4c38a4a0ff8fafff31298eb4

          SHA1

          f3a6d8763a5206d2f716d7a45375ed9e860bbb0a

          SHA256

          10e84986868a8ed31ac2e2324704e3d8a8e9090d87da4b55abb87267b7e17d1f

          SHA512

          7e30998f3047191302bc6adcd444bf065d969ec08e3845c0a831884ce3b9c346f912e1eaef87922fd9405d5d082a9373d551830eb050b152cb11aa24bb8d73b1