Analysis

  • max time kernel
    117s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 22:13

General

  • Target

    b5c925069d4566b0d5c9649e73e16ca8.pdf

  • Size

    84KB

  • MD5

    b5c925069d4566b0d5c9649e73e16ca8

  • SHA1

    0c2ea6126bcfc173fb39332cec6cbccdc5b4617b

  • SHA256

    357a5f858f9c8691312742183d61a273109a27b3bf72aa9518a6a0ce4ef71a31

  • SHA512

    2c8ef51c5528904969c81ee570c98c0effa7c92de826610486a21fd4ffea4b3b2057f8df683df323381a40710f707845aa211dbe94fb2e9f7a589db011a91c99

  • SSDEEP

    1536:clZRlH+clSpFMz/DiTTHpJt+XDbSkisfJroIonRstcI+ETFFXRWapOtQHWjxHRwE:+ZRFUFC6jXtIb7isfJncNEjXetQcxHR1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b5c925069d4566b0d5c9649e73e16ca8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    276225ecb9c64c2c3d993ea1830ceb64

    SHA1

    440f9f3b8b42ab007b0bb0767602c6743ac2079c

    SHA256

    fdc6434890c04c427833ec692eab9ce6990b61164a939d4fa8bc616315a9cd2d

    SHA512

    64badc136509cb4c2726a18a920d0f6bcd0a4730e33582081b68774cc2700d5982f84bc9c55b75f5f94bc2ceccbc405a22552e28c98d49663f0ca1f0686917aa