Analysis

  • max time kernel
    150s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    26/04/2024, 10:40

General

  • Target

    65156969.pdf

  • Size

    90KB

  • MD5

    8146dd152261c010df741747e2ddccef

  • SHA1

    2c3f40cf224a748b390336d5d0c82d05324d29be

  • SHA256

    106bcff0966a2c465eb303cbb2333ff6065997284a85c70d1fd992b397689059

  • SHA512

    3b6536c753934b12691d40e141224925af5393803c352ff246a107999e565785c3fc91100c8ee96598becea74f333523f652c8b30d3d461c37d138cf936aa086

  • SSDEEP

    1536:HTU71fxV92FRUqv6zvJ0CUZUxTCXOFY6jEzskfID3mgx5Re6K:HoR6TMdxTCXOF7Idwbmgli

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\65156969.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    eba897b7f0578d1e7757d9ce829eb2b3

    SHA1

    4573a2ae6e72004cac3b00444ce7b60aec453a87

    SHA256

    7e62af4d5bb0e5924fa214adb5e3893a6529eb5a24fb3ff78e3db558ae2ff807

    SHA512

    dc4d9139432d67c4d9101d0d4bf6574f078dabbacff7b91231bbc411831b8ac06a6f9b55b8537ba838777375df9a2ae5bdbd5e26f7bcb4d919d7d610921a8680

  • memory/2240-0-0x0000000002C20000-0x0000000002C96000-memory.dmp

    Filesize

    472KB