2bf062b39c513e3fe5d5abc47956794310cb88381060ec379f6b940cc45e0a3c | Triage

Analysis

max time kernel
122s
max time network
127s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
05-03-2024 15:15

Sharing

Report Analysis Logs

General

Target

Propuesta de servicios Leon Antonio.pdf
Size

246KB
MD5

525439c9c945da36b8f1d32dbf1be752
SHA1

74b2de07e9424e83769266002cdb1c7787f77153
SHA256

bc012f3d13615adb387e8a99f0942cf85318c87227e15df529098661731f3326
SHA512

8792732e86a75ae22bbccbfe210f2be63f1cbf46071ec6750e4fbd70321c68cd2b0e408898840b81128251c58a8891cbd66a21c3d40428cdad7e9ba3855da7d3
SSDEEP

6144:GAhSoz4AiCsDK1s3Mw0liuevq/6Vd/k7ZgWmtInuquuoab:vhxbAkSTURoi

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2460	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

pid	Process
2460	AcroRd32.exe
2460	AcroRd32.exe
2460	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Propuesta de servicios Leon Antonio.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2460

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
27f97bffc44034e32f86c7e803bb15b7

SHA1
c4e21f2f6c4d73c70d20ce530d91bbf2c22dd7ff

SHA256
f0af6069a26597acad669b3c3cb331f2c43486c5dec2f0c72010ca832ee0dc98

SHA512
c0d47738360f24470fa0ccc3349867ee9aa750459d93109504b3dde515c7f9cf82b1321711b526dffc2973c5c4a1971aa0e9917be965723cdd27ddb873633584

Download Submit