Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 15:47

General

  • Target

    591a741cafa719a14e91ccc43375556e.pdf

  • Size

    81KB

  • MD5

    591a741cafa719a14e91ccc43375556e

  • SHA1

    bc6d6846711f692d63f6b7ea569802e62682111c

  • SHA256

    594870e701a1fe2b93b4d7fc556a13d2e90e3e0d1bc5c37f3e52ee67ad34b29e

  • SHA512

    cdb67efddcf79859526f85b00ef78070b8602ea63d9477538fe792f7c23abe1db97f80286c1c0732f3cf355d6ad4b5596da4a7d0b4f4305e52a0f80d0145efa5

  • SSDEEP

    1536:Np3Uyoko73BPTCGExvVf0REiD2kA9/pbSi939y/e6Okf6ysROd:YyoksxvSv5AD2kutSwNy7Okf6ys+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\591a741cafa719a14e91ccc43375556e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    451306a92a7d4b980f6c5a74d88fbe56

    SHA1

    4cb6b2f07503e76638f01f3efd5a33833cc287df

    SHA256

    c8a690929fe4acbb3605e70198f08eff7876ec19ff72641d8ea16206365c6ee2

    SHA512

    6bd8149b75356d2e4d28673d81cd57299c77d37e75e8bc3ddc0f6defa86141247484bb691cc0faab94fd68419390f68b94f962e4bb0fe245a37bfd6ef7e3d3ed