Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    25-06-2024 22:37

General

  • Target

    Texas Consent Files#329546(Revised).pdf

  • Size

    70KB

  • MD5

    0eb651889f57c8a3965e7cfb8a08eb41

  • SHA1

    dc93f04a18e1f37fb5a261e5bb94ca6f1501103a

  • SHA256

    071212c6d0fd46d346ca13a3baa2f7ba3825473aa017a355ff71b16710629fc8

  • SHA512

    8ba5d8848242b19218b53dede6a73e3f7d677b23e4203b3c34ce01d79a68cdb068c6df2edaae9e6dca3806cd829c2e936939a136befc1db02a675f7ccb0e4b74

  • SSDEEP

    1536:XoBpNyNL+NI38jFfGRAHopIUgkIL/Kxz1PK8mrByM4jFWR2UIXLp2uJZp:4BiLwfGmHopFXQ61PqByB9jl2aZp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\Texas Consent Files#329546(Revised).pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1752

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    7c424cece4c4791be89f7c3504e1271f

    SHA1

    7d952c3f09a75b21f377e63cda195c85f693b5dc

    SHA256

    70a7418a265aadfbbd2c7d57bc81fb9decba500c1ca024e58525ec535d80330e

    SHA512

    8190d54c1279fb4e62e9e2f2b5cb26f5e9976c93c7a3847c2f1ef1ec844c58b41ba36278c474fb03e305b34601c4721842f0a348c2e9ea344a3509d0869a93d2