Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    13-01-2024 08:53

General

  • Target

    58816f32cd0023379d0c47dc22c98b19.pdf

  • Size

    87KB

  • MD5

    58816f32cd0023379d0c47dc22c98b19

  • SHA1

    e25ff5da774021ab7367004c2e41c47935444f24

  • SHA256

    39bdde1d90fe7628055dde094dd913584f197fa59fb47202a2f3306d8e9f6fa1

  • SHA512

    c9b262d7e204d0f4f3b8716a21aa5ba30671b67f2e07041bfefcaa8d89847fc4802bf5dcbb7ef8a3c9b1044281d9b83289ab477bac432b46aafe410a8e8fb98c

  • SSDEEP

    1536:sIKfBhEHra8Xp1geXapOgnRyK0RRi7bG8RGdygLWYpO2SXQ0qtWc6s2:+KHraip1giaphRyKORi/9RGdy72clqtM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\58816f32cd0023379d0c47dc22c98b19.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:756

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    ad359249a488e81813335b032b6b1b88

    SHA1

    8f2943cfd23f8705d03d0cfac865cc0f9a889cac

    SHA256

    7794f130b8fe378e3553d706c5d8c8a29759c63f55685bb73efca2422855676e

    SHA512

    63234fdb4d2dd3b6b7675ae2b4b0fbdc2eac9bae029c4cbed6ebb02d8bca979ec37d316b50edf753e144a880616cb97a5243e59e15793fe1c6e42894127b0260