Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 13:56

General

  • Target

    1abb0bd0ab13c57a3416519e7de7b7fb.pdf

  • Size

    82KB

  • MD5

    1abb0bd0ab13c57a3416519e7de7b7fb

  • SHA1

    26c683a9ee9a942a52778fa17d830bec8e761f76

  • SHA256

    7cc311df80073abde16f7b00849027944ab11639ab2b24c3680a284fc03f8a42

  • SHA512

    b50367564e44931f8a9552c59f407ce54779a81c9132567fc6b202305bea6bd0a74e2d4e035fdaad846971402a0604584e5f587d0aa271e7776c879ed1e7b7f9

  • SSDEEP

    1536:AnZ7qrx5K477IBVCORUGPZmUbwBrIgaA41TcL71k5FFQkRMWsmSlE8rWOpOaZ6Q8:ZH3OHfZmUbwZFhkTC16lKmWTcaZ18d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1abb0bd0ab13c57a3416519e7de7b7fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2276

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e2212f6cc81da2ed2f589e28664e9871

    SHA1

    8fe5db7ac42d5387d6d1ec02996fb1a56136fc33

    SHA256

    0114f5b2262db86b182d258d5617db06217e8842c7e7720cf5ae7b29771970f6

    SHA512

    ca693c4c78fb6d242fbb5723d7afcd34d26cbbe2f2611b13691f1431a8e3fd7e61c361c2e1ee7f5fb12b2928b570e8c9d4161fc1f53d8830c872b2040fb77df9