9dca05d456e7a2f665bc3d92c883574754718441a6075de6d09a918e67ae1035 | Triage

Resubmissions

19-07-2024 13:39

240719-qx588sxcnf 10

07-06-2024 19:08

240607-xs7d3acc41 10

Analysis

max time kernel
122s
max time network
123s
platform
windows7_x64
resource
win7-20240419-en
resource tags

arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
submitted
07-06-2024 19:08

Sharing

Report Analysis Logs

General

Target

The Ultimate Privacy Guide.pdf
Size

991KB
MD5

89839cc54ab6e3cd85c06cc837631719
SHA1

a25065d5301c838b714261d2c5e0e0553a93ccd0
SHA256

49d70057e256b152c80457d63d8e44c08eecf317d3b5f299f799acc13d5a6ed0
SHA512

54b6ffb3fb348df612a5e02a6c2d0461e7cc0996ea054eaeb118e3b0253032c08b6696ee986cc193cfb11c762b0652064660d33759e6ec62a0a3059172149fb5
SSDEEP

24576:A0bbH7v9TzRdnipNb0QN+BhPD21/tChaaI+Pizvsov0Q:RbbHpTzLnu0++imiLXv

Score

1^/10

Malware Config

Signatures

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

Processes:

AcroRd32.exe

pid	Process
1860	AcroRd32.exe

Suspicious use of SetWindowsHookEx 3 IoCs

Processes:

AcroRd32.exe

pid	Process
1860	AcroRd32.exe
1860	AcroRd32.exe
1860	AcroRd32.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\The Ultimate Privacy Guide.pdf"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
PID:1860

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

Filesize
3KB

MD5
c19a0aabb601d71c26a42cb6b23f7f7a

SHA1
601e27c0348bb1ce175a3e4f4ae95f4993e1bc98

SHA256
7718d2b5557521b32d19e85d6c6a1ce65c7f3e4265948a9bee06e737a727e7ab

SHA512
ffaf77cf7f4517a7c4dfd143f11a00496f2a01bb6c156e0791ad0d5a4f977b0b38f740717eb15582c214f16cdc877e3e2841901890e3ca1741c4b66fbc59e632

Download Submit