Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    12/03/2024, 04:32

General

  • Target

    c274ba68031b2d9d8967cee9e47ac44b.pdf

  • Size

    95KB

  • MD5

    c274ba68031b2d9d8967cee9e47ac44b

  • SHA1

    a9a7f0983f4be918b670c2545e052dca0f43ecc9

  • SHA256

    8c7b284fbb71d6fb6cb64254c75f0e413487b0894459316358d54c16c0dd7a79

  • SHA512

    d051daee99ec0b8183989758af659f4c98d0e7c8d403f23a0f8bc59e00bd66e8de38db24c2f74b3373a607af29e16575133eee57f43fb5f51de14bc63ea76147

  • SSDEEP

    1536:UxbV7DoarEO4qa/yjxZB7cb28WUt7nUJL7v5O0w6UcWW2WBlOdBWapOnhTm:EbVPAOFa/yjlA7UdvQ0ZUMjEdCnU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\c274ba68031b2d9d8967cee9e47ac44b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    b8a6d0b93be96019894395d959074861

    SHA1

    1f682041185674804d90b4eb857470c2d31cad74

    SHA256

    c4d45ab229b093df1751b5f6af7802944e2a08ed7d2dfeb81433f06baf6ef800

    SHA512

    900dde3634c65bfe92771ea1a130efd0fbfde1c7fa7c05ee86ec333d5b0df943a893974955702823990f473b5a658528eeb2acc7000a16699c0b31b1f15ae962