Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 18:40

General

  • Target

    schvues 2024.pdf

  • Size

    284KB

  • MD5

    6ecd0de62d846f403bbcbbf0da515d28

  • SHA1

    dc52fe11bd41cf689fff918df02d593ab11ea50a

  • SHA256

    56a288d8b5c6c9c3ded824781d75267b58f6a258c16c18e1094e3d45d7f3af29

  • SHA512

    004cd5db27575d938a2d56dc2d079ddc11d2d7b7159c2a0dda4dec729606d22c3eed737e002072516c6ae74fc62afc94e236740b6bb14f9dff60531f2ed2045f

  • SSDEEP

    3072:jA+Q5DvMAV2G9lMS2Uisrvmr9j/b8E8gc/iqJODZ+Ao1X840O41ZWt7kb2NQ7K0E:jevzxHXiK5vliqJ0Z+AuiW9+7fd+zx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\schvues 2024.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    bd099ae1ae7d99f8b40bca6a506a1ca1

    SHA1

    f610882f966ed7ea32db1690e8740c6fe26cec53

    SHA256

    51f880a9641a0cb2a2824e1f7d75c601dc9c8083e552bac830a7d9cb0c8245e8

    SHA512

    bac0cb06f1e2b5940fddbd43a1491996f4ecd9fc10dc6397daf0283c02f84f575d20ad5cb5ce1db106e301f1325a82ae9532497747eb16f0290161114c2cb2eb