Analysis
-
max time kernel
361s -
max time network
362s -
platform
windows7_x64 -
resource
win7-20240221-es -
resource tags
-
submitted
22-04-2024 19:58
General
-
Target
$TEMP/PCSX2 1.6.0/Docs/Configuration_Guide.pdf
-
Size
588KB
-
MD5
c808b3b90e8eede8e1721f7ba0bf56ff
-
SHA1
51e29fae622eaa581611cb0a8c73ff433d01d206
-
SHA256
d5c6b80c088d3b7bd26f2811280fdbcbe6e0d9edffd00e5775519d0c78745379
-
SHA512
fbe4a1f0b8bde128710232ff62865362d944fcdf7edc617dc0859bffe48cf60d448247bb2191956c6d637dde192668a246f31d5f0b7edaa6cc2bbe0143adf955
-
SSDEEP
12288:OS5CQfYsvFZnoA2Atj4a14asP2N/wjoXyln89USkesX4au:zk8tFtj34as+N/Oln89RklX4r
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\$TEMP\PCSX2 1.6.0\Docs\Configuration_Guide.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD58d91666c4b2e1b57a984c8c547f6a700
SHA167fc7c9fcf4edbec40440aef16c53cd87535a4b4
SHA2564768ea810b9f1b3ef4152fe7f0b2edbe65422c7bdc4acb6b0db9879b58c1ca47
SHA512186484d43f1781fa5974654f2202a79544d0131525d6092a0dd20f6d1758ff1a02ad377b00ca963f25ad916d28362a043e1a1ca057da14efc051145a26e27203