Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    10/06/2024, 16:30

General

  • Target

    Datum-06-2011-ycN8ypvhga.pdf

  • Size

    218KB

  • MD5

    3e2e33751ac7d94c9a5293706cd27d08

  • SHA1

    8c75e711f24fa90c8c535e5ff379c85e75d5e3b6

  • SHA256

    75e904eff8fd01e333957689b52f81e35b68b0d421076133142c7bc0357e0f65

  • SHA512

    15b9fa479f1a51dbce6fad07f29b43848c5989bf143b8a699a0d5b5895925998119180282415811250824fc1f9c2ff919167c26a367d276897adece11b936724

  • SSDEEP

    3072:sM2K3pPA6Bb1vwHx1OEt/m2AqaOzCFb+fzvCVraVxnboZ7jyR8uwYCNp+iRyM0ye:PxA8bsxT4qLcb+qraLoZHi8uw1p+ZM0h

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Datum-06-2011-ycN8ypvhga.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2188

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    64852f288251bde8f757f7296fa84f81

    SHA1

    8d34e49df88167b0cd5bb57096d8e781ac2c2184

    SHA256

    0f477c900783c588a268565bdb893e020f29ffdbed1a32f9139507cec5dcad0a

    SHA512

    e1451296d25d1da1fd919021b00650d9fa3c0f71739a18928d294eb9e5641b8e557271e6a6fe6d8402e4b5e10ec3090d3abb0e656bc6a646952d052a0af13b2c