29fb831eb1291dfc3c7d90d6f9700bfe6f38772dfbd5bd84049f5f5ebd809e88 | Triage

Analysis

max time kernel
120s
max time network
121s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
11/01/2024, 19:01

Sharing

Report Analysis Logs

General

Target

5453a4017f99e7936c2baaa56821a2b0.pdf
Size

107KB
MD5

5453a4017f99e7936c2baaa56821a2b0
SHA1

58fc28e21025c29b0239127096a56be9291f3b83
SHA256

29fb831eb1291dfc3c7d90d6f9700bfe6f38772dfbd5bd84049f5f5ebd809e88
SHA512

7ebd6efadab92ef28329f89cf66f1fcd286433c7fe8f4c6832be068509e5ffa61d6335c314052df670e486c40c86faa0c88c986aa6621744c6459f9ee9264729
SSDEEP

3072:WBqJ2SHE/e2jQFNt2s9kzwOEX7LkppyUx2RB/Wc:7VN28TYikzMLr

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2936	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2936	AcroRd32.exe
2936	AcroRd32.exe
2936	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\5453a4017f99e7936c2baaa56821a2b0.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads