Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    02-02-2024 12:21

General

  • Target

    readme.pdf

  • Size

    1.3MB

  • MD5

    7f9ad9afa83aa5e63ddae4706c68ec28

  • SHA1

    05a809e742a08b77587f951a9290672e7ea717a1

  • SHA256

    366c8415c683100a13ba40997e993140dac0d32d1f5389d95ec1cf0ef1bafe5d

  • SHA512

    571b05b6366a86bb30e5d61e443ffcfe11d5190dba837da1ac739710df4609cfcdd60498fbfbd41ce8f3f9c5bb1beec5333c7899a796f6206ef90056ab4dffb2

  • SSDEEP

    24576:WSHw2CPNbC9NmcBaOoH7nAdVO2T+ox2QQ3K16tVMEwZ0x+QWcu2m:WSQ2+C9NmpRwVOs+ox2t3KpEwZ0GB2m

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\readme.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1704

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    95358fd3811f9e577389665b0c7b45ea

    SHA1

    73984b7457f273fbcea24749853b95d274465e71

    SHA256

    28c726bf7f742a829335e58f55a52f1631450749900a8e600abec36402484505

    SHA512

    99b7b9c528076a273a20b8445478b3ccdec2894e557be7d0f7a94e53963bf6dad1cd1886e889a35de80e945dd16e76ba1282b12c94096cfc74275baa6c4ffe34