Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 05:38

General

  • Target

    2a50fd4f653824d68016d3f73cbea927.pdf

  • Size

    78KB

  • MD5

    2a50fd4f653824d68016d3f73cbea927

  • SHA1

    05d161a293459c79214c64f4ad20ee6dc5e36c57

  • SHA256

    ee7f30f3ef93a5febd3b84a2ba55393a8f6573250ca97747b28bee99c5c25655

  • SHA512

    c61848a374ca5eb456b9a0ccbde18cf82d1378940d93569ff0936f4a6e3615a8a55c27fe1695c545e6ad566e054257b053c8e99555b95107df3c34965a60e998

  • SSDEEP

    1536:FNaCkrU1EB07NJEwBgaaCRYvwJ6BCJiiU86OhBFxGGIuGmmnFmve2kb:njZ1m07NWwBggRyBCJiidZzFEDuGmmnF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2a50fd4f653824d68016d3f73cbea927.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2252

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c0a433f00913a3561536e9e2b0e2daa9

    SHA1

    955392b080960c03ba0ac0176727e65c9f1e0415

    SHA256

    9962d00f1f3f78a9a5336f127524f2684a4ce1e1262ba4fc199edff5810b9dc1

    SHA512

    a7701e4fa48aa3a3ab7579b7e7a7878cbfc63801668fd14a53d907ec2f40a44d1d4b9acccf2e5fa0c107c2a5ea49d483514c963ed7b01901e0440e2f611f80c4