Analysis

  • max time kernel
    118s
  • max time network
    129s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 19:21

General

  • Target

    378768025f7aa05f8adb0c3c42f1d35c.pdf

  • Size

    91KB

  • MD5

    378768025f7aa05f8adb0c3c42f1d35c

  • SHA1

    c1417d1bd7abc8755198e9934350266de80c1d0d

  • SHA256

    ff60696ed4902ae2968ae000f0e218755449d15420634c78fc77813008a24ef2

  • SHA512

    49436d885e303cfe99a81f4d5210ab6660b6b842db5f3ad4d71d16d20371c2990d7ddf1c1fa3d536122c914b551156d9f132dc8b16d2fc944c2be024393b4194

  • SSDEEP

    1536:luZjY439xS7tiCOQUr/kS8FtbtoNYrqXhKrOG7EEor2qW1b6CzHYW4u7sOXWUpOg:Yu0mtMn8dYX/Jr2tz4Ju7sOK7c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\378768025f7aa05f8adb0c3c42f1d35c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    87043edfbfa8415b44389c835e928fce

    SHA1

    05b7a176ca3fe92be83babc6db533b72f6e5202a

    SHA256

    8a9cc8fc96e42bffaf80393ff4e953be8d141947077f85a79c486c428b13ccf4

    SHA512

    beeb775acb64363c62e3e944f80e136ac26a335a7c672131e92a019bc02eb5e0e4d27382ae4ebb9ef62936b7c80f3a1b38ff1d01a4e5575e1682672bd02984bb