Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06-01-2024 06:43

General

  • Target

    458d70b7fcff6d59dbaa6c0c125b9845.pdf

  • Size

    94KB

  • MD5

    458d70b7fcff6d59dbaa6c0c125b9845

  • SHA1

    ecc8d3dc958ab1f8cc1c85a5cdd96d679b56a6d0

  • SHA256

    ce815418f62d7c27827dda74316485cd9ecb637619b3725f6c23163b1c44eff0

  • SHA512

    ceb886ae5aea03c08ba52f99c9c18d5529928d56cd1126aecc184f699545e7b86686db5419deba8d58ed20b4442f31a3fc481de5c92a09e5325c7b7c64cdcc98

  • SSDEEP

    1536:zQfaWZzwt1XtIWXMzlx3paPTxX3SrZPDVKQRVWBWHhYQ8JHL6mWvCGJW8pO7aipW:cikcXXDX+H5aPTVIBVKSCVLWvCGg7p54

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\458d70b7fcff6d59dbaa6c0c125b9845.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c483b40701af58c61c793137ee279811

    SHA1

    dadf16873477fb537d1a6d8d95e8872aac334735

    SHA256

    b01674d1aa800731c57239c79fadb881ff77e24c52e447c349c9518641f5ed1d

    SHA512

    0823ad76ca45874d7890a95b20a62e6fc81e12c0c8b422ece122dc189cb6e2f09863a67f2c29065ce9b312da8d226706c7c61b508d2935cadee134f51a816607