Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 09:23

General

  • Target

    Order Specification.pdf

  • Size

    169KB

  • MD5

    d56064f9cabae348c886731c7ba299d5

  • SHA1

    d3f39607e7f2609f454f366c0635adcec525c663

  • SHA256

    9c39c8da46453dfca7f285807bff1c54fbd3b1ded0f29e3486c0178de5b9191a

  • SHA512

    ad093b3dbaedba1d20441e472cb9e434f0fd141e5b5b8d6d2fa9cb6c41e0245979814cebf73213ef57d05fa6aabcc77e8a8ab3e3df23da003f80ba2db0f513df

  • SSDEEP

    3072:5PhDP8velqthOuQOIiDL57e8yf0SZSGOxXczH5463SJjLN5tS783/:5GGUvQQL57e8yf0SZcRczHq8SJvPIM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Order Specification.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5784b9452339fadcd9867b3bc6aa90a4

    SHA1

    89fdcf30c9f8b6c23f20a9e8ac6f4080f020edf0

    SHA256

    bcdd3631ff456fa5ce76d89eaec70a234813b9f4458384db59fb016faae3154d

    SHA512

    eee13b38b94c8a4e8bc1a23add28a210cabfa5d51a8ff0f3fa40e70cedb700517017683bfec1b92858bfff4c1d99a42cec54c12b9c443db67ac09a5b6845227d