Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    11-06-2024 18:48

General

  • Target

    Datenschutzerklaerung_Touch.pdf

  • Size

    22KB

  • MD5

    8cb0b1e995a9908a5a3927cc6d9a33d5

  • SHA1

    f1a6886bb536a301aab93dedaa0e8cf969e3a3f0

  • SHA256

    5ef231981fdc65634791d312e42a35b6a2a93d154efe0a5bd0520670c9601d45

  • SHA512

    28e8d88efc6d78c59c692c91fd4eb7727733d76ea2b704ae5f1ef64ee2cd80e93cdd19bd51659b6aaf5499ba4ea37b2d581520527fb84383fa9b17531363cab9

  • SSDEEP

    384:6hQzah0KjAuDr0MgNZquEi/mXX11Ozj+hCPQkS63Y7ozDoKDlYDIvJoYDIpA:Ne/bDoDNzEhl1t963Y7ej

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Datenschutzerklaerung_Touch.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1580

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    6603e93ccfcdbfd48aece1467077e6dc

    SHA1

    faff47e9e2740986273c36a958308c4dd5f747c2

    SHA256

    341acd3744d97b25150972d866be6368f7db7fa5a23140728a49e0821c109837

    SHA512

    2e8fc0fbb20ff9101883079624d1b96ccda1b04fb9da0a48e62d7d227e26f6f7688cbc38f94a81ad66d11c5e19086730f741216db8629fbea92876e7a2e12239