Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    07-03-2024 16:29

General

  • Target

    b925b1e146fce7f6fb00afb0144cdbb6.pdf

  • Size

    73KB

  • MD5

    b925b1e146fce7f6fb00afb0144cdbb6

  • SHA1

    76a316c4b4d3514ea605f8228584e5e39c9716ef

  • SHA256

    f36f117e90b7b3a1f25197cc2228fbb2c147fe85139ac107cbc9c682b1e5efad

  • SHA512

    7f58b35d5b9e2055296817f1a68dcf98b683ab11df55c1009eec40ea8929bfba04edd85b88953901b77dee50406ce9f4ac0ac539518a9ac4d743b221f8c731f7

  • SSDEEP

    1536:F+9qwrAqVMJfFHneEVx4FMyrePcM5pC0Kj3ej7qLMxHLmi:urAqi9HTErACHjuj7lHT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\b925b1e146fce7f6fb00afb0144cdbb6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    5ee7e2f20a37da0f83820454b925bc17

    SHA1

    cb71cee25484bfc3b430ee298aa34fa68c1c01e4

    SHA256

    8f4aed712e637af6e3855d2187913ca29259c046b45de6d72026ef3dbe63c403

    SHA512

    1479728967cccf05fe9daee36b712acb1a4fb50a94167d8f175f770cf018ba29cace27cf10b858abeb75cf267221db29fc2123d2b32bc437bced6f22568b4f81