Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    14/01/2024, 01:20

General

  • Target

    59e692f4c7b50785eb116d7097b79d06.pdf

  • Size

    89KB

  • MD5

    59e692f4c7b50785eb116d7097b79d06

  • SHA1

    f850a7d3d1e51e212aa5ab94f6d2f38fc857dee0

  • SHA256

    a9c0d42c392d9ef23e68741953b70119de23a6e14d32bb9d3e5d4ec24bfffbac

  • SHA512

    9fdda457c0ec844494495c795c4a1dafc30bc1334072d8854d0ae8538e6b3a1eec311cabce4fea223af77c651718ad52a636454620dfbef053a01a7d5f61adb5

  • SSDEEP

    1536:zVK8+xmkrVHyBUpU/AogfP3t9Ml/2sCfGIVnyUYhfkiKXWYpO2lEWAQnh5WjGJKC:A8bkrVHwCmgXt9Ml/2sZIYNke2SWAQhn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\59e692f4c7b50785eb116d7097b79d06.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2084

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    210af8719cb2dc9b8fa7beca5cb53476

    SHA1

    3a93e3a1182cb3fdbf394961ad4dd02c7fed5b9f

    SHA256

    4c0c9d1a2439dc4577f928d918b776a7494d56397096051b66bdf0e8fee6ea70

    SHA512

    8677925d2062d1812a6242d667e57d5b793acfa55e19334c826eaca9c3f07343c621c9191e17b1fd485eb3c3477e4eaedecf31edef235b65379fc96a3ee665d4