Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    09-01-2024 01:59

General

  • Target

    4d0a9ed82b2eda850e4cb8ee288e7851.pdf

  • Size

    40KB

  • MD5

    4d0a9ed82b2eda850e4cb8ee288e7851

  • SHA1

    e5bcb4d727c38c65643c3c3fe82b27c4eebc800c

  • SHA256

    1bf0df558eecf8f8ed4bc6e4a83f60560aad98e3e58f52745c9462bc3a517b21

  • SHA512

    0fc5feadf3530984a8935c3762273b49889ecef127d8577623562e894382a31daedc1d148526a40763f4d60cdf100b1baf4c30832ef8d5f03c01704901ca8995

  • SSDEEP

    768:QGIE1QpdhOkXWL2Z9M+XA06Hl8AXet7ZGj/tJeGnnrwLhsk:L1+GL2r7O8qA0j/7emnrwsk

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4d0a9ed82b2eda850e4cb8ee288e7851.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2516

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d5cedf785449960c86b0e301b4032930

    SHA1

    86beb58f6bb296c63cc7e666ca4b91e9db0ca3ae

    SHA256

    b4fc7ee9116d0730551b90bfe2507fcc4ddf985cb4ad8da83c22f49ec4659985

    SHA512

    db908ffa5b14ca4b6f78ad85c837d8cc2d8f4e0725eab42d9a9fc5c84b6eaefc4a5a20071ebe501bf12a5ea6e4d0bd52934878aa27ab3f0d213d123ae174e997