Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 06:09

General

  • Target

    2b44219c3eedf2be0e7079ecc73dd601.pdf

  • Size

    34KB

  • MD5

    2b44219c3eedf2be0e7079ecc73dd601

  • SHA1

    b8b97ee92c7cb7eb51bc99c569dcf94ddb5a1705

  • SHA256

    20120c24f2bc00007098eba52508d06e87db077f8546b94f442ef12dcd32026c

  • SHA512

    99d0b630518d7facd08879cdc4af35ac6ac24ed30f60dd1c84d8bdbaed4bfbcd8475f0c5289350a8987822e13073ace762f3c4ea41b55898b1cb699bafb0a582

  • SSDEEP

    768:wZKSUPCXyE5QcsMbg2DzZZQbQml2u84R6H+wau8+oAE:rt+5Q2bgIsbQFuf6H+w/xoV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b44219c3eedf2be0e7079ecc73dd601.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1640

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e5e2e64261e830a0ac11aaa239ebc0d8

    SHA1

    5620fc2a3ec6efab434a9d2f2775173424a1e775

    SHA256

    12817cefcb3718188f3bcca9fe6f91a781abe303d946d88f0ac004b1dcdb1cf1

    SHA512

    51ce63a109cda2a27f6bb96b184a4f13b276e018bb28689e5a1f54df0fe777733a503580b684ac0b100d81c2b7725c579d3b77cd763a9320ca6bac672dcb407f