Analysis
-
max time kernel
119s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system -
submitted
29-06-2024 21:25
Behavioral task
behavioral1
Sample
534f6f9298b907d2498b02378b958575c19ebabf6a7f26f92a324dc3e547ae8d.pdf
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
534f6f9298b907d2498b02378b958575c19ebabf6a7f26f92a324dc3e547ae8d.pdf
Resource
win10v2004-20240611-en
General
-
Target
534f6f9298b907d2498b02378b958575c19ebabf6a7f26f92a324dc3e547ae8d.pdf
-
Size
128KB
-
MD5
41ed35171619f7fc6168609373a2ed04
-
SHA1
ed79e4a0f678aa9f0b279031ad979b6094c931b5
-
SHA256
534f6f9298b907d2498b02378b958575c19ebabf6a7f26f92a324dc3e547ae8d
-
SHA512
af81620727510d88b58309e54d5e72bd57563b2de3b2efc83f9a4db0983fb8432e04a61f6f1efc2731bf2a0a3cdd089afa770b00ac6e49993238c2a37c6faa31
-
SSDEEP
3072:0IPbCe29FbUPivpDx+VuJ78qUIu9droX9yO7:JPWFbIivCVa4qUIuS
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 1192 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 1192 AcroRd32.exe 1192 AcroRd32.exe 1192 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\534f6f9298b907d2498b02378b958575c19ebabf6a7f26f92a324dc3e547ae8d.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5d23c8a6d18791c7824af2bd51a094599
SHA156206ba52bcce6860b12cccc1501178f7eba1180
SHA256b1705e879ea265875d97d6aca73e99c19830bd25e9dc576c42e37e488a9c509b
SHA5125fecae85dd58b933ed2816ded1f4a4aba93bb10283689dc7aee250347dbab3e4d7f8c1652b59039e9e83db7d94fa5a662b45581baae6f01a5f1f076512073ee7