Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    30/05/2024, 14:07

General

  • Target

    120_Jahre_Treff_Schimborn(1).pdf

  • Size

    583KB

  • MD5

    a850b0a01c1b6da8bd5686be19f81518

  • SHA1

    a1542204304358c735f93fe97199c365e383c317

  • SHA256

    ca0914e31b0982a17a5d239f31a6e77344236b58f611617a4cd7e55c701e8940

  • SHA512

    968156cff4e59bb4ec6459d027ff5dcde899a917aec36591c4b3cb7ae35df1d50c73498530a68b6922933f24c43222213fddefea16ba6f38942d716c9034db5e

  • SSDEEP

    12288:LDTbtO8QvR5fPBhg3GQqGEKHqfm1i8RfUj1Rf99zh4leNEL:LDTbLQvjJ8BquHqeHRcJR1R/EL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\120_Jahre_Treff_Schimborn(1).pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2008

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    455127ba068558788c8e8ff205be4bdd

    SHA1

    dfe1d9b11af42a1289c5da2d359bda50511b5324

    SHA256

    78e80312b9af96f6704139e98f6be04bebf4abb0774ca38fd7bca037a2c1fc0b

    SHA512

    341be4034d68e450b6cb093c62fb3ec8f53882eab8752c61ce7d84943c2c83added149755b4ab5c060d0da4694689cf67e4b370cb752a74235da80952fbabbbd