Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    06-02-2024 02:23

General

  • Target

    049675afd5c9505b9715872d499b9389.pdf

  • Size

    1.3MB

  • MD5

    049675afd5c9505b9715872d499b9389

  • SHA1

    8c4b91d462ff045d0b04b432f7a81f7f21db60a5

  • SHA256

    e71b5e81714cb09b1ecbe6e13aa6bc06a359b3366c396ac4cc753e17a194f6ba

  • SHA512

    cdb0b63e5ab58eb03e22a222218da13745f5255faa3f6d6131a4d6088736197ee43f9d9904ee39ab4df504f3099d70c9541c5abb1dea2c5d4d6ffe54e1513056

  • SSDEEP

    24576:0P8ZRbyHoJ8jJzc3zX8RslrE6PPmrRrvQKFG5BEIyUgUcnOe+uSA:0kZ1yIJoSMRsaEPm1GBryUgUcOe1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\049675afd5c9505b9715872d499b9389.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    fd2a144f3b12db7d9d26ae6e0b100fe7

    SHA1

    a9c33766bbdc12c9f15558ad3a6e9a73a8949c20

    SHA256

    a3c7ea9350d5a6001b13d48a7fc29a5a15f2919c08ccd5476d19e3c7af91e07d

    SHA512

    c1d170d1664fb1781469f3ea6fc93720e571946280a3d2169573428027e7de8e7ba8921fe7795f3b769435598af6c086138eca34ec763f57f375ad56520b8a56