Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    08/01/2024, 04:13

General

  • Target

    4a689396a047037af8d2499d409b7369.pdf

  • Size

    88KB

  • MD5

    4a689396a047037af8d2499d409b7369

  • SHA1

    b136f6d97bef2ac717f26ae3b9617fa8937f2aed

  • SHA256

    9e14abfbd126e7f56384281cbcb033e3b3013d89f64f0f81b17cbe10c9f34959

  • SHA512

    838d0a6c5f48f048857196dedf9992d00ea3a99222bb81d62b093dc139870be96f6356c4109edd9cb45ee139bc067914806176170b670cf2b43a83391ece880f

  • SSDEEP

    1536:2wRsbarpAX66st/zJWz4nEzXhaAZsMM2S0/s6N7jOvFLoJ1zlr+xcbQojnobFzSM:DsbadAq6shJWJ8AjS0/nNtJ11+xcUoju

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4a689396a047037af8d2499d409b7369.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2224

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          51526f5a2549e8729ae88d4639e523bb

          SHA1

          c0e80991551a694a2e927bc256203364caf9a9e4

          SHA256

          af91b96cf3bb72988200d35be17ad5a59614d003ea7cbba30377f8a8f8df1460

          SHA512

          5b99604188fd9bf496b78a88178c2e05aebf24a34438419a6a99b52a63e7f87592e8f655b645a3e138b524d25d0442b3520f54c04e97a8228271566a10316797