2f5fb16db55968dea65ac345d632b9c009d478c6091ea4a30ff27b33bffe86b5 | Triage

Analysis

max time kernel
121s
max time network
122s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
28/02/2024, 03:20

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

aadf70b88e6e652fdf5f6e1d4617445d.pdf
Size

59KB
MD5

aadf70b88e6e652fdf5f6e1d4617445d
SHA1

43b15c680ea707e091c1cd388c5b3bc56042ee52
SHA256

2f5fb16db55968dea65ac345d632b9c009d478c6091ea4a30ff27b33bffe86b5
SHA512

69249bb54c6fbb8c38475b18f7c514fe0da51cc6cc7512fb1305385f49871a532555d889bfb562a6d3f3efd750a67208445f04d0a5ef00a8efe72c7a363ce2ed
SSDEEP

1536:fhk/cFeQtvXYgGEUfd5UNd39ceYgHKX8Uub:C3GPYg5GU2eYwU4

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2204	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2204	AcroRd32.exe
2204	AcroRd32.exe
2204	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aadf70b88e6e652fdf5f6e1d4617445d.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
cb106680808861a4481aa21fbd28a287

SHA1
69d02cacf48f682a1746ce22802da3eb1b7191a3

SHA256
990e7a012ec7cd8c07c268afc33584468598eb03a54d96a156a8e2d270ba8981

SHA512
977526d447594ee3ede4433c4ce89dd6dd389f11de4808fb0272c4e195aa45bb484de056ca27244a626fdc8548759ad1189847704e092cf5a2320219bb5a9dd6

Download Submit