Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    05/03/2024, 17:11

General

  • Target

    b53914663b9ab6d775e0cbf67e3c9a76.pdf

  • Size

    73KB

  • MD5

    b53914663b9ab6d775e0cbf67e3c9a76

  • SHA1

    b7290af0fc470e405a49cefd9dc9e90438c9317f

  • SHA256

    c0c44cc0f16536dd4fde30ee21a06b4f3027e7c9dc4ccb7cf20ca0c0076c61c9

  • SHA512

    2beb5802c3c6415ee68c55c69ae465ac6a576951f7649938b37e631a41a5e2ea92a6d219b7395d16508be2b4decd0661d0878575ec0ace1d5a339e914a6a42a0

  • SSDEEP

    1536:ZEb+u9MUrMrx9lB2R3iXy2rSnbsLEFJyehbWdO82UXO25aWOpOaZFnul3b:yvMUc9D2zALEFJ72z22O4PaZFnuF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b53914663b9ab6d775e0cbf67e3c9a76.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2340

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

          Filesize

          3KB

          MD5

          67d6eb27c27dea7474db42a1bd794188

          SHA1

          dd70ff3031dea24c86c5e281b18f4c1113e74935

          SHA256

          98b1fcd631e35e25ba90171bc3386512cd200ccb1cb1767ce051587fa36a0222

          SHA512

          3b0b48cd808a057d69db39398cbc39aab1bb384f552101382609637f89cad037defc6947c7c0f2315230f8d749dd16fc26b538b0ff15faa222cfa56f816ea399