Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    24-06-2024 10:18

General

  • Target

    Complete with Docusign guillaume.pdf

  • Size

    45KB

  • MD5

    58c77c38174031b9acd8225a2c417466

  • SHA1

    77039a42bb650008ea320aac8a5cfb077536fa70

  • SHA256

    2404b3af33b12cea35439d47124ddcd6e4b686e1a5ea66af6d7ce2b779dc8f76

  • SHA512

    f0ea85902fdcef43f39220b1112b57509d19fc298f71c4ac137b2fe2d9dde463df40578393f02273adca88b1a74ba77ac9b45ba1a19a49ca0eb055a2f0e4320a

  • SSDEEP

    768:t03RdfS3VVl33333gcPuoy5rCUVeq3p/hbKtU41ws7rzqQZTDBWQN58Pv9JzfBYK:qfoVVO5lCU8q3pJA1wsW2T9WQN58XLzd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Complete with Docusign guillaume.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:840

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7e0b28a96eac9db94c265b353efd0c71

    SHA1

    3ae660ee2d473882134f5201748ad3c817252ea1

    SHA256

    f5738c52140935575a985bae751258fd613fe1eb9e208960c1ac2c323ede51ba

    SHA512

    f49ebf3edef093ab4dc2fba7dc13229fa475f4f03d6c8366b7e01b4b1bf93218f7643ab50b0c510f76d2b26e7c26dab3a5759bdadea0ee5d7817e0a519329a4c