Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    18/01/2024, 16:28

General

  • Target

    657e9a68a1121e72d2e1eb5a29d8014a.pdf

  • Size

    87KB

  • MD5

    657e9a68a1121e72d2e1eb5a29d8014a

  • SHA1

    f879b4cc904319cab9c9f9e32f0607ea42e55015

  • SHA256

    6e3327970d06f47b2a8da85db47eb499396f84cd58b3a1c7b6f8e30b05cda56c

  • SHA512

    9f2bc562874784333435a651ef981f8de5eb62d834df053a7269a502c1f77df81782c709bee108e1850f6017be666582966531521d43c374431849f2e61ff185

  • SSDEEP

    1536:rZFfh7aRuTGvtts0BmcfppJjaiUgxPzUhVWApOquWOItqqGo8KJPdrxsleUC7:1faMTk/XmcfPJjrUgxohoqQIQAYly

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\657e9a68a1121e72d2e1eb5a29d8014a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    74d41cdedd8b70c1e6d7a7effdb5cace

    SHA1

    bda549c60f38279ea53b93ddef1502cc7d16f13b

    SHA256

    2e3b206b9392f3119e0b1fee8702b5a03b49832127aecc9ca0c85ef205f50f5f

    SHA512

    04d769590f60dd660cc7f5166c8fc12a5d340a8215216a2263057323f45c2155f86602be3a4227d44aea0a4ebf095c7d90266edb903aadd77b0718fb7c24f8a5