Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    27/05/2024, 16:42

General

  • Target

    Mr Ajay sahu niwas certificate.pdf

  • Size

    925KB

  • MD5

    b229374db5fcba85979a34db43b2b70c

  • SHA1

    0b1c80f85d93fd6528a5dea8bb6be9f2996d02f7

  • SHA256

    62756ebaac5ca2e00425315bba691dc0397e33646819156c242fa64c20c801e9

  • SHA512

    eafd0cb731a512e196e4a00f71638ccef0fd325856a5ec947d32211428ae4cd485b6b5cdd55366b5360a71f02681e39e8128df8d5569e0a1c814a83d0aeca350

  • SSDEEP

    24576:VV8JFVE5434gnxfuZRuwZLFtkxxIVZfztLV:VV8J1oSEv83Chh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Mr Ajay sahu niwas certificate.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1712

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7bea3e69584c1a82169ab688dc3acec1

    SHA1

    59ee59abd8367f7145422ec3b9644b3ac1674747

    SHA256

    a572a522851f332dce2c187adbcf0433c5392c995b6c6db1627c7e867467bc4e

    SHA512

    286bcc85708a5daf46af67de4f96bc453db6af2059ffc206d1706c7875fcd346af63027d2de18833840c95a9626cd79a560ead8497454f967748621c93db8697