Analysis

  • max time kernel
    122s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    15-06-2024 06:13

General

  • Target

    materials/3-go-m3-variables-slides.pdf

  • Size

    1.5MB

  • MD5

    011809153b51fe5b7ac308b3e4ea5d0e

  • SHA1

    088d645c0fc67adcf876d7d09d4a799c50ab6ca1

  • SHA256

    b13c262b91d2bd3458d973374bb59dde0b14113eaa29b6d6308d8f5342850d10

  • SHA512

    2eab03343397777c976eaffa314876369c59ce74da41ee06ffe0db0a181f70b25c20462ac312bfa4b07ed7159834935e8935051134890754d6d29c9cb6c6bdb4

  • SSDEEP

    24576:pJ3Xvf9N6TfIhuLCXhU2IRgSdDX6O+++TH/L8G5Jw8KalTkV2+O7oTMTs:pJHGfvL0U2QkoQ/LVZKalu2+OsTss

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\materials\3-go-m3-variables-slides.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    d516665e15cc72315bf1443a389b496f

    SHA1

    c4d5ee86266f2b1c4c805d4cfd6df0088aa5e185

    SHA256

    876bbcaa45aa729e58f63de5d685b965fe8370e42d934a2b6ff3efcd65beae1f

    SHA512

    44f2a6d161b4662d0e02a0c00b0c1efea0840c98aeba4917f36fcd05f80adf883f6db4815c68d58ec2e8f60635703176dae55112fbca6963d9a19a3b2dff7684