Analysis

  • max time kernel
    121s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 03:42

General

  • Target

    4a58b7a658a15cdf82abf05090d7a77f.pdf

  • Size

    35KB

  • MD5

    4a58b7a658a15cdf82abf05090d7a77f

  • SHA1

    09bd4c0e48472b3f696596ad97319da33bf56824

  • SHA256

    67013d18ef5a59836faf016ada3263a9805c77995c50e3fd3bdd8d6b8567969a

  • SHA512

    f1e37d06729be8a1c98fbddd07a442cd435ef7c24611da60b357ed9f246b2b133e9a2732540876772972be6605b142f49609ed7e6c327b74d66fddd8b000a58a

  • SSDEEP

    768:/OcOqrlee4/R5CIhnnY8R5cL18d9Wgsih+pae9iAoZj7S3eKDt/nFe0nlll9BBOA:/OcOqr8e4/R5CIFRQL18d9WQ8wJIemQ8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4a58b7a658a15cdf82abf05090d7a77f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          bd72b4778472ed04dc20dd5151d8a5c9

          SHA1

          0a4ba8c9d876f2d8a8f167897ee2e5e7ad4ef2fa

          SHA256

          982cec18256e198cc260b719a9918ab7d76fc389e953bfa4b519a7b783515b6f

          SHA512

          d0a10a32595680716d735506ac44ada74e71874d8e6589ea64b28f2ef44b4aea94faa2d66d7993da31464ece78d565c3bb6e4c2b3a59a1ea6d31cb5d0fc8b609