Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    22-06-2024 15:39

General

  • Target

    Manulife Consent Files#304861(Revised).pdf

  • Size

    78KB

  • MD5

    3875ac39426cd2c0319dfca30f1c8e0c

  • SHA1

    28f7481b8754c2832f25aa1f7f7f0c67684e53d9

  • SHA256

    f80e822b37a331d6db0c61c01b26cc6c3ae7929d271ac17d51a49db409380cb0

  • SHA512

    9f0e6796d15eceff34d44ef343d0e2be757ec58cc33caa3ff32fedb1ea9a688760b779980cf7f11952ba80b70252335305ddf7ae08689f6ef6047b0b46d5f17d

  • SSDEEP

    1536:qoBpNyNL+NI38j92xAN6OZulRvyhkZeloqTe8Ih1/cNYWR8gukoyaEON6BY:hBiLUaNHKCenK8IhSNdN7OgBY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Manulife Consent Files#304861(Revised).pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2872

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    4615e81c13736c92224d969849c2e299

    SHA1

    64c7fb5a0db6e13ea2c5f9ee734275629161853c

    SHA256

    7888a4d363ec8deb3240475d89539446a74c9ffa96c26ef89fccb6c2649a0201

    SHA512

    3cf55bab320f5ac6ccd633bfd61892cdf1728d37e90b1a41d738350b65a902d30ddd5df6ad63e1f923d866182a6daf9aad7bce4c25701071ebab6fb04ba1969c