Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    11-03-2024 03:41

General

  • Target

    bfc06405211f80a023c64784c94284b8.pdf

  • Size

    35KB

  • MD5

    bfc06405211f80a023c64784c94284b8

  • SHA1

    1b65ecbc07d6cfda49329f927c2e718cc419768f

  • SHA256

    d3af8502fa02a108ce82872a57a3cd82fafb6050722c4e4d90c26ed2302e8ce0

  • SHA512

    c650b09ab5befdf62b582dc7ae5837286871b356c956eb46119a87b5db81b174ce726078af5dbd43b7c62aa21942042dbfe2834866fbca272e5a08d9c856d8d1

  • SSDEEP

    768:biycw6/BxsmTC6gFgRFaAQMJQAKVNrq2J:eyPotgFgSAQMJQJVN22J

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\bfc06405211f80a023c64784c94284b8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1696

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d258df87b5b15d769208a443981a8c7e

    SHA1

    00bd51ec7da03b8e77769cf32619928e866df1b4

    SHA256

    81042695d9675f4852885d29a9d04e3cfd9022a21380b29d463c34a083a114d8

    SHA512

    07809b7b37dda6a64c03d8adc3aa4e13dd3ee444654ca726613082b2aef864fbd52ce63d12dc7c27ebd7eaf87e04b69c2cbf650b0df4fe983f1fd4eab7dcf6ec