Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    18-01-2024 19:18

General

  • Target

    65d3eeeccb4fcd4d79c52321631c5968.pdf

  • Size

    62KB

  • MD5

    65d3eeeccb4fcd4d79c52321631c5968

  • SHA1

    7257ddc323877679d220da1497799fa56ee0fcb3

  • SHA256

    f28a4863c11856d0880e56819055aa5735a57cfcaf1577d1b9ed735891319925

  • SHA512

    faab3d65412d9f7dadacc0e5a7511ad6b68fedb288e7a7e0316971a5fe638eaa3ee63ba5347c753980351dcc13e7270279c8dc7897aef1d8dd50ecc1785ee6a2

  • SSDEEP

    1536:Ch1V8lvK8n+vU5yhFYhv5WtAC39zWT8t/OwFZ3Tzc9Z:a1KC8Unha5crR/Tv3/6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65d3eeeccb4fcd4d79c52321631c5968.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    eeb6bf720be4b378d03097b65b563769

    SHA1

    3e47649579939e4b3b6137ce1e1a6f537b7630da

    SHA256

    f4be74350c42558f4aaa07c68c0f0c9c01f20b1870c5c1efd64d8cb0f66ace32

    SHA512

    816e3beddf718c8ca00f79ed51d1a431141d500e4332fbb36f16027379e27f3392f6ce1f5cc881dfc060497bd71ea7c1de3bc7caa0ddf0056827941af771b544