Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 21:47

General

  • Target

    473ed1c2a9665d686b2110023646b5bd.pdf

  • Size

    35KB

  • MD5

    473ed1c2a9665d686b2110023646b5bd

  • SHA1

    6920544482076eb947cddd236d1f237a0438703f

  • SHA256

    4e5a99510302757c3993f76b44c0f27e0eb3096b3745158d0da2ba79b84bb0d0

  • SHA512

    724890ae72388d496482bfa672a7686172dd6281b21369e118353c28e72ff67fe33c783a93e6c943cf39669dce833e83927036374ddeb00512b9afb188747cdd

  • SSDEEP

    768:aZpoY9CrUq6zdmJjXjj1hq1Brhz77osHohrBu0FJ3qtgD7MacRVGah7llljdraVK:aZpoY9MUq6zdmJjXjjO1Dz77Nmrjvc/V

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\473ed1c2a9665d686b2110023646b5bd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2372

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7e06f4762cccabbbc0059afebe286f27

    SHA1

    47e0781739a5aadb2dfc11890f0274f98a9c7ab0

    SHA256

    204c54b572ce416200ad9eeffb095457f9ccc0ace3fa8a1a3eacc78ad403e854

    SHA512

    cbf1177839b440248aeea4fb5514c3635e2d9aac899a97276aa2fa5b5a3eeed02c0e8b7344339cbb01a99332a753dc8bff00dea6702924732c596e0e3439f31b