Analysis

  • max time kernel
    49s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    24-04-2024 23:11

General

  • Target

    =?windows-1251?B?0ODx7+jx4O3o5SBvbmxpbmUt7uHz9+Xt6P9f7ODpLnBkZg==?=.pdf

  • Size

    498KB

  • MD5

    9d9481b6ee51a459c41df1916920043a

  • SHA1

    307276e32902efcc62d68fe5089874d1006b9d93

  • SHA256

    79632057854185c8393088a22fd64981d4809cc7e63aba7b86d6630ea2f0099a

  • SHA512

    2847ad155787e5ceacff6e6f0f5a90c2fb746e29f532fa71e7f592cda7ca6548bf2dc3ff515cdfefdaaaee19016e330fefa865427cafb190b7db88b02228e6bf

  • SSDEEP

    12288:jDRa2hv4EqFvnuThfptlDV8HnEAYyWhbJHmcw0/:fRXhwxnu9fJDuV3oBVwM

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\=_windows-1251_B_0ODx7+jx4O3o5SBvbmxpbmUt7uHz9+Xt6P9f7ODpLnBkZg==_=.pdf"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2272

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    97ddf47823e88cf768a3ef096513adef

    SHA1

    6c3a6b3662885408773365ef532fd864569c0bc3

    SHA256

    b2fffe6e1579cc2df4d02e1e70f92685f9cb809d21c073d225334933e7bf78d9

    SHA512

    09d8448853c4fa5e5c2bcb1e404641b854fcf12af7069ba9f94d2659f2ee75e89c59e634d3314cbf2bb68f625e01c7053c129d02504053f311cb858055c56a9b