Analysis

  • max time kernel
    188s
  • max time network
    153s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05/01/2024, 11:33

General

  • Target

    4393c483d07509f728f6d618204f7f39.pdf

  • Size

    42KB

  • MD5

    4393c483d07509f728f6d618204f7f39

  • SHA1

    24064935dd3f07629277dd3d73b49c8370ad144a

  • SHA256

    5b6930fb236de341abac6c0d08f926c0612d276d1521b9792d2565ea7d21e765

  • SHA512

    a790bf2c5d937e7ee16c4f28534eaccb793e3af4a64b7c048f1273f8508e62f5fe7f38476bba7bef13ddaf9bb17a3acd56f06e18c52d7f6f959bcb2795858139

  • SSDEEP

    768:EtmhRKrJ+Bw4i1KD+pHOeGC3H4qHZiA80aM4tRzkTc15DlE:EETgJDVpHooFJH4tBgczlE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4393c483d07509f728f6d618204f7f39.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6482fc5dc888b08034ee215605b859c0

    SHA1

    cb8da300a7a058dc20b8b9ace1a4acb3b8d12f1d

    SHA256

    cd665bb3341db00fb8f965b3c700c6cd14ba9a9bb1b7de154c9f6057d0a38406

    SHA512

    ef5941366383d146b819bf08cf7eeea043ff56a4d55dca3e538755d4b900f5cfc3303208448a02797a85252b4953ac43a0d5f44bb2a4e47e21a38709763e77ee