Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    27-01-2024 16:22

General

  • Target

    7ab5cce65345e41900b08cb1d38a7038.pdf

  • Size

    5KB

  • MD5

    7ab5cce65345e41900b08cb1d38a7038

  • SHA1

    a68ebaf2a8c33911fbedafc1575da42618fb710d

  • SHA256

    ac6af67ce4413ce5088eb504a7545a52080b694cacbf3a7584ec8f6e5bf38bf3

  • SHA512

    6b88a49da21d7248b6134c90998c79217d03af32e8450de6075be324b9de940c941e34db6842100660b3d8ff3289653aeb7fc4d4c7e9012843e1311c55a87b50

  • SSDEEP

    96:uJ6Zl6+LYUKjYajqAQR+JXfYpya5JTSZzJfch8Fqw7UlVCUdXZo8MN3fQ7qylIt6:bVYPzjq3+Gpya5JmPkq7UlVCUxm8MtoT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7ab5cce65345e41900b08cb1d38a7038.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2672

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    c81f72a2cb8f93aae6f14e984bca3fdd

    SHA1

    102d00e61e9f8c556cbc7a53f874e6609e208252

    SHA256

    f7aeb0ac375658522edb4523802f7873290a3ccf5c58816783140ade56566f6f

    SHA512

    1c3c29d3e9dcd197ec5eb4b8a4ff53ad6a6c9379d01c69084f310fea62535f3db41d2f975581560725f08fe52b52ef52bceaa53df21b36e64c01c07b138e4830