Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07/03/2024, 09:13

General

  • Target

    b85f6cad7f184cb389473e752cd8fc1b.pdf

  • Size

    74KB

  • MD5

    b85f6cad7f184cb389473e752cd8fc1b

  • SHA1

    3b700ca1559769fa97e77d8a57f5a4f8336a4261

  • SHA256

    f20e781aec7e75c463419c5571ed04df72e75c5c80bafefc31d3a30a2370db98

  • SHA512

    ab7df36f0f05b46817f42f0c678f81f8ab069c83f7f4400d014cbe64973e227d21a08a287f1e5ab0b21c35906547a421cd6d3a390ac667430b4c1fa83f66d022

  • SSDEEP

    1536:uI0832HQk65H+axDdH7hv8pVyzDfpbC4PRTpxv8YWmQ4lZqcptDiu5WspOR8Dijm:CNQhvdl7tsyPVC4PTF8t2FpMuQRrC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b85f6cad7f184cb389473e752cd8fc1b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2976

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    188f29479e1c81c9b2519a4710837131

    SHA1

    7ecdb118709cc7f0a1927cbd15d6d6aea97f8cd0

    SHA256

    6e687f36db4ea27bd756927e33428c95640a35c0688cd9484313757b5143aea6

    SHA512

    4563588414b107497f4ec43fcdce1991d42e2d6c5106fdd714d5a100bcd5bb1dbc761d3056d242a5c4ffebd30d78525fe34d266faa7fd3214ef57eea1ea0d5c4