Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    24/02/2024, 19:12

General

  • Target

    a288f8a49e0d59a66d756ae9b5332d37.pdf

  • Size

    78KB

  • MD5

    a288f8a49e0d59a66d756ae9b5332d37

  • SHA1

    257d49c000b0f2768e351c381c6be5bd2e8653c6

  • SHA256

    1037dbca943b6f9dd5abc21c7478321855d689fa998f06a49113e8d05e809994

  • SHA512

    d6cc0bba8e0d4dcd5657a97943157236f780cd4c6933f8b2ab2af4cd747b58b30465a4286e809ce068ac5ef1afb33f157ed57362fee8ad53270bf531adf97a51

  • SSDEEP

    1536:38dnzYr5G67RBqlb4Zak40sdreaEA8De8Cz4UEWkDPDwXHj/8WbZm7dlwh:IzZ6iZia0stePDVCzeW+PDwXFZm7a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a288f8a49e0d59a66d756ae9b5332d37.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    844705ae4044bd2080e37731b4537bff

    SHA1

    f667f5dc99ddb157dd1851cd505d2176a3e287da

    SHA256

    1f8ca6e7ebc4c80332c7cbdcadc71e82a8ad4f63060e14f21ccd0d1fa3a8fc06

    SHA512

    03d66d8aa3d6f0447906dbd283057058e331dc747a8eea08d59f8c90e1a82cc52c0c9e8169853432ac2a7cb262f942089190f7045caea5293a8c9b0471efca6d