Analysis

  • max time kernel
    119s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 06:09

General

  • Target

    Probeplan 2.Semester 2024.pdf

  • Size

    136KB

  • MD5

    15e0d1de9994afdf558ab4e51895ebbe

  • SHA1

    f07b94fc1336024566d04858a429a8351982b9c4

  • SHA256

    d87a131f2bbd987886fc3ac4b5261667e477a068449e7fe88ff3512104c10025

  • SHA512

    94287440de24425620e8ed412419fea590039dce2287580d3a2afc31c8845b37db4cf477e71ec35796de3ada35cf91e2f817a14d63755809203a9e45ab246146

  • SSDEEP

    3072:tcQ55zFiEKGGa8BWV8rwpSS1AJvH/S5WurkeikP4WmQX:tcQ5HiE9G1BWV8c9AdfSFiM4G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Probeplan 2.Semester 2024.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2996

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    f62cc33abd1983a8a74bcd89390861a2

    SHA1

    b6d4c3430201bbdca36d39e4ea312c748251de46

    SHA256

    9e8f29c4e97c22657590c950eb11d495af7e6dacc6be179d90d6713230bffa84

    SHA512

    3b4ae0048d5ae55ac4e68ce8b93aad8a8c220c40259579215b5a981d9a458f60e5436b6910fd59e34940c0fb015f8b0b4e5fd6f73e2b011fa4c65437583ef030