Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 03:42

General

  • Target

    4a58ab08ca0d1ae06a0dae617f1a75cd.pdf

  • Size

    115KB

  • MD5

    4a58ab08ca0d1ae06a0dae617f1a75cd

  • SHA1

    d8284886b42e064ebec58a699551bb494197b7f9

  • SHA256

    08e2fb567528d8e418be4cd7d065bc60ba87c51ec1b26f4b73342943fce75d21

  • SHA512

    4cd51f588cebf37292132f3466e8156ec4a52247e1933ef54b0b672c22c2fcb8e02c5818e10ba4c078035b50e8a133a41e95aad994aa5f3ce6b32f57e135232d

  • SSDEEP

    3072:CPjTakLCXJikkU8AlBq8G+ymwTuu6m7N8hFu3i3iPcC9zIkb/W:yjWkLEZ1ltG+zwNZ7NkyPnIV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4a58ab08ca0d1ae06a0dae617f1a75cd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2296

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          6769e623eefe84a60ad58e2d8338b3dd

          SHA1

          70c05f1bf3f235e60d7544e2988824d88db474a4

          SHA256

          41900815fcf295cbfd9994029516f63573576cc49b1adb2023383a724c3d5cf0

          SHA512

          c45bcda63c210cb99a1fd317ea623cbf5c6bbb3cfdb13a8c33d2cac3c4dd6a72b31cee97a924be5b59d72de5a36fa4b79212afb03ed5d0e75658814e60e9a503