Analysis
-
max time kernel
150s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240215-en -
resource tags
-
submitted
23-04-2024 10:49
General
-
Target
lzh5_20240423_121936316.pdf
-
Size
175KB
-
MD5
31ea611140f31ca1a190dcf9117ba36c
-
SHA1
072a1b730f3a097dea00f99f4490aba12a0cce94
-
SHA256
105839e78efe93dda0ca8f21cc7341d7229539327a24ecb5e8686cdd13b96d75
-
SHA512
ae79cbab134bf143a346b62a23e9ba5472ddc5b14200e3f79330ba13296c53318408b814f575fcf11eaa64497a62acbf38315ef2198e0b89c4454f78c0dd0606
-
SSDEEP
3072:DzWexzc+tNaUW9AFlNmI2VrMau2lU68F6GCwznhYU2JUUmG+pdBBTP7RW0/MLvbz:DCexztat9AFlNmI2VMaPU1gGv02d/FW1
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\lzh5_20240423_121936316.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5b871d2d66051d2606947f04873921279
SHA1c362ebe467a7d53bd3edda9fc87fb37884c6c289
SHA2562f8d70f72ec42d5afb395cfcaf8a9ec428f2dcc0e32bfb3907ae0ffd8fcdaf67
SHA51246699019cfbb42084b18a88803ea64daa8746661fcb057dcd0f71aaef7ba55fb4290f2e61a61748272224eb17f68dcef064205c74f35632d81494e2c3694398c
-
memory/2868-0-0x00000000050B0000-0x0000000005126000-memory.dmpFilesize
472KB