Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    28/01/2024, 16:57

General

  • Target

    7d83533ea956a3d09acaa63dfe1661fc.pdf

  • Size

    34KB

  • MD5

    7d83533ea956a3d09acaa63dfe1661fc

  • SHA1

    6ccccca23587f2bbeb082c6dd88689358289e2bc

  • SHA256

    b1f476f777f7cd752e124d2dcb8a0235d721dd1c223badb67fe22c1e0083f7cb

  • SHA512

    6615da5fa78c2eb8ee1aba8f2fb9d3329f62ccecb96febe78aa69dc70d30a502b42bc4418ac27bf0d6a2ea42548c3b581ee288c19aee496350f31d6404739de3

  • SSDEEP

    768:YOiNBNq/7VjgksSv0+/qr+BAd7GCsKGd1883zZIoScXZWA8gRBGPI:YOiNBNK7VjgksSv0+/qr9d7Gieh1I9cJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\7d83533ea956a3d09acaa63dfe1661fc.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          63cf616b2f0fb0244963ebf689fe5962

          SHA1

          5f908a85fa2bc02abf3d1f0ef7ea5d8798d6e710

          SHA256

          2b300ba1c686d0716ad9feef3490cd6d8dd7419c93d6ab671ea8954e0cd7b77f

          SHA512

          139b2438170831d6f3b37a9d9355dfe864dd3198c3695cd5cc5e2b10e9676bac12a8ed6e72d961eb88a7f7ab400e7f5935005195f733763ff0c6cd95037d71a6