Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 02:52

General

  • Target

    202406141137-4BU06465.pdf

  • Size

    130KB

  • MD5

    8ffb0c88743dafafdbe835af20f4cfbc

  • SHA1

    7b824833f51bf92bf13ae6fbb88092a90c122a89

  • SHA256

    df86d41ebf890f86a6f55f21ad5d0cba720da05cc993b5e2094ce099af780571

  • SHA512

    5c02e7cb5ee805e56fd9f2813209940d8aa87421e63da1e5dbdde19f9d924432c450ab7fe5cc7f0ec573f6ba832dd01939cd27c6447231ce88e469d8461ee03e

  • SSDEEP

    3072:W3JG21njP+e+b/VLrwbeWicbp8+JrbssIxHr:W5fEDrn1w8+Jrgsqr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\202406141137-4BU06465.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    fbb575afc6d4a1c1402e04751ad8be38

    SHA1

    6413e34e56d7d04c9c5f62d6978dd10830c53dc7

    SHA256

    dc056b629e9b07b736ef81b1ad8cf3fde54386c2b7b14bdd2823d937aabcbe32

    SHA512

    1b70f65571503de9d88c6e34c40dbb7564c042a0629f2d47f8847169a3596b39f2c6aa8c594b6d3bf568256aa1deae7f4111227f7594cb817055518644a9c58f