Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 03:47

General

  • Target

    Schreiben Visana UVG 06 2024.pdf

  • Size

    81KB

  • MD5

    367f9ff56c86c474fea0265bb0938b81

  • SHA1

    a169460ef0fe5ec43b0febcf4b10dcdfa5a5d573

  • SHA256

    b0f1a3a9e66bc055cf8958b764fee1c6460ba4d9fde811a1bdfd4a3d93e4698f

  • SHA512

    05ea88ab2d1f5e5097351fdbecdbea43ca13ce3e96086cb45f4fe2395366c855308ea04fe7fda2630bb943f8fdb74b5b04b64060dd39c82711030d753638d744

  • SSDEEP

    1536:Fu/zQCOzBpx95AiGHDRM5lbv6/5FHX8TG3S/I5zE6T:FBCOj5AiGHDRMW/5F3WPId

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Schreiben Visana UVG 06 2024.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1612

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    53f06206c3eea3cc83c64bd0d40518d9

    SHA1

    e2ca62a85ee33e389526e807edba6617e7f8e715

    SHA256

    93e95013135e2be413aa71954ff943c3f01eb1ed6d03dbf36f5cde687c99a79d

    SHA512

    9ecd4599b697961e634ee4c3f40f9123c9d1aab4ff9118dd4c52701aec73752b2fe98cdb2c17dfd477c51dea6b9d7047ea3dae305f0872758fa7bb08cbb52d0b