Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 00:08 UTC

General

  • Target

    57779d3f39f193eafac3a0b4950dfa2c.pdf

  • Size

    82KB

  • MD5

    57779d3f39f193eafac3a0b4950dfa2c

  • SHA1

    054b7de630643923e63863cafd8f94035a6b3d43

  • SHA256

    8fd1d9ab6c0715781cef67da0f15fe3839067931c43be2f7e933a87af679f917

  • SHA512

    4b45e66a07faf414c6423e62d9eb0910bf6b6fb86be918705112936d0a709cf82663b25e4b1597bcd36e553a4cabfab7cd7d90c77fbf5c3a629ddc0f7cf19781

  • SSDEEP

    1536:7oGThFwiuGo4bduJNk0ZewPHpILoSyvegGWOpOwrKWc48NKy1:EChr4JNk0RPJgl3g7wry5Nl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\57779d3f39f193eafac3a0b4950dfa2c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    e1a682048832dd6ad8d78eac9b0774ac

    SHA1

    4e192f9f7bb55fe3d274ea56c3e30cd3797886fe

    SHA256

    cced807b55d9bd957e438efec4ecd7828a2c8101baecb3669b5c1c55d6ed9f24

    SHA512

    c5e01138249d2009c1ba93f28773c612ee7f8f45a3b9ad70c1cec89c5cca6552bbe1eaab5cf6c4194a072ca4e059ba77fa6afe76cf3fc3c0b8e02387e007fa76

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.