Analysis

  • max time kernel
    126s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 06:01

General

  • Target

    2aff97e7ef10a51fa1066b7abc6af24f.pdf

  • Size

    83KB

  • MD5

    2aff97e7ef10a51fa1066b7abc6af24f

  • SHA1

    b1cfff22b1ffbfbff5fe8fa240b5b8815e167ff3

  • SHA256

    eaae786d4a63177980e6d4db793745ffedeff1a16fc05b74cfbdc4dc92fe3b37

  • SHA512

    2215c4b8200ce65a9cfc05a1c75cb7e237d292d1f3552179125e1c0bf096e7cdeb81a0816995f64508c9f18cfa93c623827b855f7f7b1b3754dbd48e89af862a

  • SSDEEP

    1536:g8CJ/noQMcQhxMCCFn+BHJvlMaOR7nlO0JP+U/h1uX4q3bcV:INnoBcqCc9JGBJlLP+U/hYX4A6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2aff97e7ef10a51fa1066b7abc6af24f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2476

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    8894e5173c0741c83bee0fdf30c7c8c6

    SHA1

    c56b30582f0a9ef9a404b7a59d8105d4f1a07151

    SHA256

    baf0bad71441a1c2d6717fbd4ad603af5aacf64974177fb760eaa21614f2eb03

    SHA512

    1d6d901b49b91fcd64b7f781ac34aa56af72a7875961ef4dc70ece96b0366398a0ab64c484b6f1dc7c1f4f244f740b3a9de6da29bfc61755f709d765c46b1c7c