Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    26/01/2024, 06:16

General

  • Target

    769b42c70355dc5b424556a0081a8bc1.pdf

  • Size

    375KB

  • MD5

    769b42c70355dc5b424556a0081a8bc1

  • SHA1

    a6060e78550aa1818f0b440e144b4ae4099dbee5

  • SHA256

    dffb453cb353421519215b1b9e062cf50de1f0e8eed44dd5cd074a4e57b43677

  • SHA512

    810a31c5d4e8ed51da4b10537f46721ae98078a8ce6a7f8fcc5132615c27548c63a8bfb1c39a58288e8c261cffb1ba32ccca3d89bbe9912d0cda8290efe9a8b6

  • SSDEEP

    6144:Mp22KwXFYgf71hqJDEfg4zKG36lHWYmnxWY0ztaBCUZi8A/8jU9+h:Mp2rIFY0qJDE4M6lHWhnxWY0BaB08A/G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\769b42c70355dc5b424556a0081a8bc1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7f6f02b851b04981e90d1055459154d5

    SHA1

    6d7270ad51a6ef2a14077b10d20e82c8156c63a3

    SHA256

    edb5297c621f718808dd6829816039b2c171bfe54d04d259dc46751228da0c3e

    SHA512

    4fa8cb6bb04fcd92a0f19042c73a56588d37e86b3b85d434199ddadd090720092d468e3308671afc1bb994d3e0af94dc9fd9c44fc489f1b9dd865503be216979