Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06/01/2024, 02:59

General

  • Target

    451990ea5a51ac46364534906780b0d3.pdf

  • Size

    86KB

  • MD5

    451990ea5a51ac46364534906780b0d3

  • SHA1

    4c50ac6951397b5b7db790f9b04b5d593641a6cd

  • SHA256

    0d3fb951665d121b0ba792306276811be2457b00cd10305fc1d5b74394ca88fa

  • SHA512

    72769e3c65e47a4d2e8e986663ca048cabef0a998ffe5de6deaba26d3acd55461f0dff02daa8c9a7d1d663c64a4be844ec3f539c8310e452e78dd186e1060d14

  • SSDEEP

    1536:rRN/PsjRpy8uTphiwAjBfwJVasZw9hj8KCUW6ZWHpOvTW26EEouS9BIb:9kRpyRviwetwJVLZw9pCUlHvoFS9i

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\451990ea5a51ac46364534906780b0d3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2288

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    44eb607cfaa75b62f4e16045ce8bb01c

    SHA1

    a317926f227e595212428d29d646aec8cacb20e7

    SHA256

    9d1a04cf3c87abbde2f7738db0aac95ebc4a2f8f7d2bfddedbee28d76b37d043

    SHA512

    e8321a1f64edcff44d39dc9b94544097dd33a034fb1d72803e0d3455a73173b9c4e034fbfd30143e9315cd1acedf157fa9f520e196000ab4e4e1d4c86bdab094