Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:57

General

  • Target

    38e0090dabf79257d5db8cbb8b85d7b4.pdf

  • Size

    73KB

  • MD5

    38e0090dabf79257d5db8cbb8b85d7b4

  • SHA1

    2e78240fa1e6832e29a358db0655ee2b62410576

  • SHA256

    0706d5dfc1460195be0397927335f80f44235d8520025a10f9c6df3d51b157a6

  • SHA512

    5a6a7f981c7b726bec1810fa3641e809ff24894d6f2ceb8a47e6670ce6b6de0d226408fe84ca5c6c4bd53509d32f438e82b5066d1e401c65f84bef6fc4046ed0

  • SSDEEP

    1536:c3toeQTaYEAMedRI9vD3+TMhsoeHtfGWgpOGVyXoYhPJFWQjyepVCrlbbu:g2aB6IJD3+TMh6HDG0hBDer5a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38e0090dabf79257d5db8cbb8b85d7b4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6411a532084854e8899cf8aed27f6b0d

    SHA1

    69821eceaa49f4aeaccebd257ba8f9fdec1371cf

    SHA256

    0cd92e597abbbfb1ea0b41423fb5543d274973e50bc488477b6b3cea4ef49ec3

    SHA512

    0509e1e2a066b5c4bcf9d2cac29a195ad0d472c201f0c8864ccd95b70968d54e28100f166ec04c022807866f3bb9df5c51ced8e704f513b4053ea02e8adf79f6