Analysis

  • max time kernel
    122s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 09:32

General

  • Target

    a1862541fee5913d7109f59677d7eb99.pdf

  • Size

    82KB

  • MD5

    a1862541fee5913d7109f59677d7eb99

  • SHA1

    c4e75435e24d3f0911dff1ca97f64d879daad41b

  • SHA256

    8316abb65ff042a95be140eb2d4b02895ddafa89e60721dd30e43f9f03d11c58

  • SHA512

    f87933d38b89bfdd2188050bf1e85dc43d552f22ff49818ede815d5ff593ad8eece30a1ceec9791fd580ece4703457d66e112b95a801fd90628a6ef07d1defab

  • SSDEEP

    1536:GipAVnG3CaJCKoGbq2Ygzu/HQ93Vcv5l0K036KZgWd9uYjWWspORGW4VDCrWgpu:5yVGSadoGbq0uY6U9VlUYjJRUnr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a1862541fee5913d7109f59677d7eb99.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7b15e4b68aa55814bf21b3ac77c62e38

    SHA1

    6d2e9678b450d0bdabeb218820cce94150fca4a0

    SHA256

    6a536dc69ee3da369d05a38894621a474f378120ad60feb5e16faaf2ef48179e

    SHA512

    4adc988811bf66eec27196c175e923e410b2ff08023589b705de075521051ff1063c234d64b01c6b8b8a73b85b7422524fa42db49e4e3a9e200ea84aa464e150