Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25-01-2024 17:32

General

  • Target

    751a7c60c926734230389bfa1d4b3c1f.pdf

  • Size

    44KB

  • MD5

    751a7c60c926734230389bfa1d4b3c1f

  • SHA1

    e23997ea2d5f3a97be6dc6095da29e7c9d0b04f7

  • SHA256

    25f5b5b2401bd70824241e708994c6650fc3cf647c3fa09c1f9ef6ad942e55ae

  • SHA512

    e55a0602ab036ed3e0af91bb8bc810da774017688d5a60057f243e79a9e1c32a303890ebda447d8b98a8c14f49a7add45118d87d29249021bda4032b252724fa

  • SSDEEP

    768:cbO1/ENkWGbQ7Yni7zqWarfNW8YqVOkCId6KiyD3THnIV:cTNkWGbQsni6WarfNPYq8kF5iyD3bIV

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\751a7c60c926734230389bfa1d4b3c1f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    5ddb92c85f1c3ebf9dbd3bd00d2792ea

    SHA1

    9518fe2d006a2d11b747611953799eef9dea5b6e

    SHA256

    58af9ec94e3464da3064089b7a12787137e209da6bd56b2cebc95f585389ee89

    SHA512

    35907fb268bb8669e3936cf6c118f60ee7ea0d37516a9b4afa8465ef8d97fee98af38203c626e411ad25225914d2857ea53ba7ba6397cb6fe0706e3a004f4fcb