Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 14:15

General

  • Target

    a20e12cf6491526dd23eed6a944e5465.pdf

  • Size

    76KB

  • MD5

    a20e12cf6491526dd23eed6a944e5465

  • SHA1

    483f3e1ae31251eb8c6ba0bae6f3f08543609a35

  • SHA256

    30527c58c04266fc37e2ccc2fc5a89b1feb0bf0b61c987a737064ffe74a423f8

  • SHA512

    83a5ee144840bcf949f45251c13815a4fa02a8744ad031c77dfdcda26e90f51b7eace0da6e64d3eebdf11e662a73eadc56180fcb5c30521e8539b9d2b71a1865

  • SSDEEP

    1536:NNSWlS+2MisXsl1TYhPdtTAsfbNk6NFYTG2tCxL6g0GJ3prbHgYPM6O9NHzgm0R/:bzbXICPfTAsfBZATl4NprbTG9NHz9K

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a20e12cf6491526dd23eed6a944e5465.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    17788b86c4ac650c682491979ad7c82b

    SHA1

    ed9eae722cd291a49a532d85190a7dfcec0dace0

    SHA256

    6a51540e939b820e15f45c518f4ecdaf713e3e55f7eaf32479640f2e663166c8

    SHA512

    8ee6c65c75911a70bc0c8d4f58248851a3c107d263c103c23981f9196a0e322eafcb7137909eff21a4ebee9bf6536697b536196b274f1094e1f2fe7cf3488097