Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    14/02/2024, 19:03

General

  • Target

    9c679b1c11277411a52866dfc4228e5f.pdf

  • Size

    96KB

  • MD5

    9c679b1c11277411a52866dfc4228e5f

  • SHA1

    0c7f62dd785be18143e7204d7c60c2ece91e0c82

  • SHA256

    5a76fa16f77831098bf65bcc5ea132e977d2ed39c795e861d44f7a400fbd18d9

  • SHA512

    bc7a43ebb867021a0d3ebf024dd509d25ece0932b78727829429b8f7ae96ca14479e893770c22ba91207c1ba654adacb75729a2a3b70580e4f3d99207f57a0d4

  • SSDEEP

    1536:5M75fkClFWFMEGi7XECY6DL8f81vAwCWGpOKksnsm/Wf67pzQMuWmPjOwc:W7W6jEHTEKL8k1vAiKdnsmPBQMu7PjOD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9c679b1c11277411a52866dfc4228e5f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    4ab32cc2cc66e73784ba496e2cf29931

    SHA1

    0061996cc04f89002f5d8fb40d668a8a1be82387

    SHA256

    85cb2fb45b4a3e0a3e73f9918ef91360cd31c29987520c7c6f0ba1c074a54204

    SHA512

    4104e84a8f2c7fabceb48606be329ddb1349d78ea4127c0078c55e7a6108d8f0a34de1e84ebb7b2f6d5f78b7e506f355c2766cb6ced4ee252d9a8119b7031d69