Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29-01-2024 15:52

General

  • Target

    803e33915ae75abcc4a7ffeb72b0f228.pdf

  • Size

    79KB

  • MD5

    803e33915ae75abcc4a7ffeb72b0f228

  • SHA1

    a30d37e9db5189423e6665bf50a1f33b5ee837ae

  • SHA256

    3f5941369a5d4560f20183c764254633270a749c261d7c5c7182bd622f96800c

  • SHA512

    79298b993693d6e7eb3f5776bf8e8c765455f57da5ccdfe801f7631122046d410d6843bb6ec827a90896344efd2b26b58f0588e4571a1aeb6f1aecedfc7b61d1

  • SSDEEP

    1536:O9ZvumlQ4mp7vbCgbiJIvtucsx4zR0jyWTdUAueK5cvG1XTPIWipOPhWWZd99TsU:QZ1loprbCgmJUzsarWTNRYjBP9vAY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\803e33915ae75abcc4a7ffeb72b0f228.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    9ce579ef2d0754ec00c135a7d9061c33

    SHA1

    50be4644a3a64735c198c725139f37597e13aabb

    SHA256

    13e5222b890b9ceaeb168d74f68115d1482aa01445cb385a914c78a4c7d01284

    SHA512

    17a7c817a4ac79e381e95b9fcc6263b6a4b7df7b782b3e86774fd7e353254790cbf0c61ff30d3bd49492e661f452f64100369bb8b7e14fa647357d89e062c295