Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    11-01-2024 23:24

General

  • Target

    54de56b3630b3b059974ff185011ecae.pdf

  • Size

    90KB

  • MD5

    54de56b3630b3b059974ff185011ecae

  • SHA1

    accd8a740ce4249b67038f6aaea8db4f089dff94

  • SHA256

    6918a060215ea43d53cf5ec226c0f78a6bbf9bb497b990f24e3446d4aaa65c11

  • SHA512

    4e0c9b01f2ac92ab2a769fd39eb929261fec9adf8616047f817ed5a35435bb79be4cf91d218167563a8b075b9eaf288ea237c3bfbae3528df6dd62a8fbc8d116

  • SSDEEP

    1536:qo8sHWhDjlWHaRwzXA0OI7dQjAkhN3OBGQIUWXpO/RTD9RGW4q7dcddJiIgG0e4q:Z88CjlfG1OIJQj1VOBSM/FJRf6dd25q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\54de56b3630b3b059974ff185011ecae.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2020

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7b776fdfe1982d32943e898d64b0eac2

    SHA1

    c11bb72583bb9dd0a15614bc05dbf74600f12782

    SHA256

    2a83d56424ddde5b93ececea766ec0c6b3b798050bf3bb5ec167c3bb4fc7eac5

    SHA512

    293173a6ced385ba5cf9737b35a272e8a76b8821e8e6a30d1a83bf30d9f62521b301dad5517d72f52d1ff446c6b65719deddc91f002adb9b955f33f22809a11e