Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    14/03/2024, 03:42

General

  • Target

    Stamps/E-Mail.pdf

  • Size

    6KB

  • MD5

    bc457ce4ac84f70ed7eeadb0fa2d0481

  • SHA1

    d2af8caaabcd1037813499681bedca5ef336d982

  • SHA256

    8f604f3468966c390b360c7ed2a870f078e560713bd2d6ad56207348e53490d1

  • SHA512

    762a34066297f42e7da67646fbfcb5ae970bcc33335dd88ec9ab0787a20c5b914ed3ab590c3efc826fddaaef9f301572390fc0f5d34cd9afa47721a555691b23

  • SSDEEP

    192:WHRB2PD6LiFXjp1MdCVofgNMasc1WrxoKTJrv8X:WUrFT/Po4NvsXOKTZv8X

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Stamps\E-Mail.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    a8e93243283734d69715a58b26b78c7c

    SHA1

    f223baa5f4a5ae5adb418e3a661db759cd777448

    SHA256

    58522c56acd80d6228932ba62ce50c1c655e9047e8192b37a7deea48ab6edc2d

    SHA512

    b1565b98f5d57190b55469555d0c23824c1a3dde97af3ec19016ec834eb18498b40409b049419b4c2bb1d8841790bea25842fc779b8a922ecface853b06b0abd