Analysis

  • max time kernel
    119s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 23:25

General

  • Target

    3b536e46a8576010e0b529f6f0cef3ec.pdf

  • Size

    75KB

  • MD5

    3b536e46a8576010e0b529f6f0cef3ec

  • SHA1

    7948fe7d1ff2c0c879a7eb7414e685eed7bc0b00

  • SHA256

    405b3eb28813725c5f69191e4b7ca765972576ebd6ca56ae74a2b0775624c024

  • SHA512

    b6aac4d2d496e283855d5e5042aedb597ccbbe8b2c81798d8f9ccb5f2880bafb03dd1b5a0aaaef43725c69ee3cee8e2cd3912e42b92866c0b98e1ba8f430f670

  • SSDEEP

    1536:PpF4XoyTlB9tIAnV+TMbEkccPps2veZWtiHYMolGbrW+pOahGQdFPd:74XoET9tNnUTpKps8lGYMkahGQbd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3b536e46a8576010e0b529f6f0cef3ec.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2244

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    4adec44eed16c459d065105034a0e224

    SHA1

    ab7287a07693aec52e85b25e4f664666873a4278

    SHA256

    6663aefbb89b920d132d98a055af8a092cb3f065824c3411fdf92061f48c2536

    SHA512

    0f5edc94cabc2403d96a308d3e442a2b78dc676355470252a9b9b5b011f65cdeae31970d6219db72ae0099a6c2ed4734e84d68440417c116b7213072040effa5