Analysis
-
max time kernel
120s -
max time network
126s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
10-04-2024 07:29
Behavioral task
behavioral1
Sample
4e919d9fd231aa7ed11a12024298867b881f5313ab93303d4b6ed0c80df73e21.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
4e919d9fd231aa7ed11a12024298867b881f5313ab93303d4b6ed0c80df73e21.pdf
Resource
win10v2004-20240226-en
General
-
Target
4e919d9fd231aa7ed11a12024298867b881f5313ab93303d4b6ed0c80df73e21.pdf
-
Size
354KB
-
MD5
c1eeb77920357a53e271091f85618bd9
-
SHA1
7bf3048f57f20bddc6f6d5a14599660b183d0ae2
-
SHA256
4e919d9fd231aa7ed11a12024298867b881f5313ab93303d4b6ed0c80df73e21
-
SHA512
c016e7f2bee798c15573391be806350e3ce4552d0fdfbbe9458ff4fb083d5078b5d1870aac0b47911716ae3dbc3191c39a9cefcbcf9c28f162ea758f788c8d67
-
SSDEEP
3072:u2jex3TK0GZ845NL7pOjKaajWuP7xd4p9G4hoMSRETHtq4QF89OfkM8kDWD83M6/:E94eEFCXGyaRqHY4QK9W87ZJArN0O
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2100 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 4 IoCs
Processes:
AcroRd32.exepid process 2100 AcroRd32.exe 2100 AcroRd32.exe 2100 AcroRd32.exe 2100 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4e919d9fd231aa7ed11a12024298867b881f5313ab93303d4b6ed0c80df73e21.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:2100
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD540afc8af5dd7cdaa9cd697b985f58e24
SHA1876b35f969c4209f520f63e2d17ce5843b41ce9a
SHA256b7792464b9f025cb7affcd9e82f56656dca637eb5959a4ef1c38018a396c5145
SHA512ff51eee988402ca02942041ff5759e2a8f163495580baf1dd0e52f28589ba283cdbd910dade4b4dfebe13efd54e6868d8d03a6a7cda41ab5b19d7036a12a6da2