Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    19/03/2024, 01:43

General

  • Target

    d4e61b68b63c4e855f8782163f075337.pdf

  • Size

    85KB

  • MD5

    d4e61b68b63c4e855f8782163f075337

  • SHA1

    e50983e6fb3f10e2cb99fb1d7a6eefa730be3084

  • SHA256

    f47f9c931ba649bbb2f2b4e719733fc1ec3b5402a2a516422bd9db26d0275fe1

  • SHA512

    3b52e7eacd7eb7fac7c12db01da84a15f90b0e3b92b723742f5a43ffe4f08aad27e5d2ff41da708b7faf4a8ff15770aee15d6db5515482e0a037ed3d0f083778

  • SSDEEP

    1536:uPGqIvoRedVsgrCrADBDHGaxWLpp8DYKNRl9WHzXWGpOKCWBC4SDUAIYIuC5z53P:qGqzUsKCwBSaxWLpjKraHEK24UUAIYIN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d4e61b68b63c4e855f8782163f075337.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7780ee9229bc7002d02507bdc094c6dd

    SHA1

    2d2c8b42b0a013736a1dcc5999d96a6c1c9875aa

    SHA256

    c7a6d21566658f5aa764d11f44145d1d2b2f94c063be088de3549ef29db0feb2

    SHA512

    675de9badbf731b697f93686aeb6aa88e3d801c6bdf73d0b0930056ce1d351156c308ec8329a1dcf5eef63aab3b72e2bbcfbcefcc3758bb03b777ee19ea97183