Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    26/12/2023, 13:02

General

  • Target

    709b8fdc611b77e0a8fdfeee54520677.pdf

  • Size

    91KB

  • MD5

    709b8fdc611b77e0a8fdfeee54520677

  • SHA1

    46fc7ff879b7b96cf7c4186b6b024443756f32a9

  • SHA256

    b41b8be60a79b1d9d9e579a98716652bd23e1be8415988884917c09fa1b182ff

  • SHA512

    0597ad6742ef6f8e547ff978c501e2cf479da8ca5018561a0fabff7bd7ef79c17f69354c52ab1dba162991766fd37fd47aa99efc9ac0f20ac9a592e45d2a221e

  • SSDEEP

    1536:pUReMSCRDbdcTWNebiCme6ixLTToLbvGZ7rWBnLvezwWagtpJdWapOtQykBWPdPt:u/vMiC9VVToLb07aRL2sKLitQr4dPkyl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\709b8fdc611b77e0a8fdfeee54520677.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    0d5c22d324efce356bdf19404e0ae4f3

    SHA1

    f4919943069ac022f6166c9725cf622e5e578704

    SHA256

    b6e9619a850485890c51c40867c47780d50bb5f9b0a7ba238541618d881c310a

    SHA512

    b4f1756432f92628258677ec2b7373fb77168e10548513ea27a7343dce1771aedd684435a4f771ab9d3a189beaf8a03acb02be5b48a02b4c6e66487ad7bdff0a