Analysis

  • max time kernel
    118s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    19-03-2024 15:26

General

  • Target

    d6754b41771fbcea7e9afd7cd15d819a.pdf

  • Size

    31KB

  • MD5

    d6754b41771fbcea7e9afd7cd15d819a

  • SHA1

    525cdd6d8b89f2a03873e886386c5684e86acca4

  • SHA256

    5b6656244846cc8a591e130d32cc2bc84193c69e1c91eb94f633b3d2d57279f6

  • SHA512

    b3b6b400f64cd976246f91af02a8556c6076cec4e8acc46978f635dbd942ef65f128066b57bcf2617b14006d25f70babbccfc5408c2b93b7e206168a44093832

  • SSDEEP

    768:lqBrOFUuOC+t6o7fX09ux3oBxAMld418aLCczhZ5FPM8F6mJC9:EPC+9rX0sx3o3AMltaLC8hZjPM88v9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d6754b41771fbcea7e9afd7cd15d819a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    76d3cc3d1e05f4ff6c0ae3889e73e6c5

    SHA1

    cb7f393b05138e26035f9e0b359266e138049e15

    SHA256

    d9e43bd885bdcf1b36e59cfa7b83c462b40e8b2368305c96ce3b4bd1040a2ea4

    SHA512

    d7b067fe7ef3235e5353692bb205342242fcb84ba536b8bdda09196bbf37a92bd1667a99016d20d6bb3039a18b4832e285d633cb729d318543f30675a09a8a3e