Analysis

  • max time kernel
    121s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    11/01/2024, 14:45

General

  • Target

    53cb980a10e9354baf1322c9c8d7ef56.pdf

  • Size

    80KB

  • MD5

    53cb980a10e9354baf1322c9c8d7ef56

  • SHA1

    b399f668a0c4b6067482ee72defd55c27cb3bce2

  • SHA256

    39082ba90dc473aaa1ba1e24da476edb7f2a031d32d0a9b5b79c2c9af81428b8

  • SHA512

    381a4aefb94f7dc72bf4cc5def88754f7ca7bf97d41075a76008bb5702128827bc0bc7ef54ee4ed95794a64f0a1c7dc1a15ce387c1717abbe53a0594615cfbde

  • SSDEEP

    1536:FqpkgNDXrRI/Q3227KOBzPWQ7I/2n+S7Iwj/fDyZFGQeJePo:opkgNDblZBzhE/2+YIa/byGQeJz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\53cb980a10e9354baf1322c9c8d7ef56.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    349f71bad9e5abd390521fa69dc40e9c

    SHA1

    9cc788698073d1b32b03d5fb45607c320c263197

    SHA256

    afecc1ff2aa7e26ffd264a79d8afe6f1facc5aea0bdbe16efacbf773817f23ce

    SHA512

    c30fb861737f150b1faf6d03a6328a2950e676a3ab5f577752dab74c10a68a6aaa7b0a924c689f0131842d060d6573e9ab2c7dc4780fd7555f4897b450a3d61a