Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08-01-2024 03:43

General

  • Target

    4a5955874147b3bb43cc90f6acaa5fbd.pdf

  • Size

    45KB

  • MD5

    4a5955874147b3bb43cc90f6acaa5fbd

  • SHA1

    aa9528156b46e2524f64bd0eee754e195b5dfd11

  • SHA256

    10c8d4e65e88c77997328ed801ae751a1277c300f728405e0141ff39fd67f029

  • SHA512

    79fae36071ee4067d48a55e0534beea0e32a2b780212f4e6bbf79151abddce6708d00b1e1b3e497eee0303d5595bd15a126fc7a4519c1485ec7db7605c177b61

  • SSDEEP

    768:ECv2k0iBjEk031wR0CqJ9DJozZX3DXl4V38pD9bX66d9TFm5sLTymxRm+LRM2nDg:92khek03zCnzaABqShysH1mGdnDwjcWr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4a5955874147b3bb43cc90f6acaa5fbd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    88f9aafe05df222c4871b121bebd9405

    SHA1

    802810df9c9d56b6128dcd38c630d3fb517f9fb6

    SHA256

    bc1dde5058545ed2573c0359476e1d75752c524286837240d5ac38662b911ef3

    SHA512

    dc6db9ab191abfa1a0f393eb995e8953d27c594b37d851827d860322b622855ada0a5b6048c254d01e7ce401fef487cacf8d89e494a9caa2aade390f66bf9c32