Analysis

  • max time kernel
    136s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 11:53

General

  • Target

    17a8003d93b430ddd3fb3601d28b54f8.pdf

  • Size

    77KB

  • MD5

    17a8003d93b430ddd3fb3601d28b54f8

  • SHA1

    aa0f9c9077ca989abf52370daa710f2b40055406

  • SHA256

    28b033ba6147af23c2c7bdb0aa55c0c453acc23aa0c7992d83f79fdeceb9b84b

  • SHA512

    79640e5a88c765898927687ade59f1809f2ca0242f4f8bee819d4f4b6704990934bfc99effdb5fe79a9d0f9784f74a6e262d5bdd065624d49d4f55016a4ac3fb

  • SSDEEP

    1536:eoQppO4eSfcJaO2G0WEu9O7MGWf1ak3Pd16fS1qxy8D3:9QG1SfbG09MG+1Pz6fSVA

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\17a8003d93b430ddd3fb3601d28b54f8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2804

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e4eadb54a93f64a4818e47386d52c78d

    SHA1

    2e676ec3e389314f4cf69a9a6539a6d3d15b37fc

    SHA256

    322d994ace4bfa563332e13d3c9200accf7bdee5c1cd04a1639d3cd7cb00578b

    SHA512

    90052fc88f58564091f7c29740bd7710087425062116f3f3766756d89051c10447d8e7d402dc3611a8db15bec9ec96bbb5d3b02cf68ac3b7a87c9d44a41bea4d