Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240221-en -
resource tags
arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system -
submitted
30-06-2024 00:47
Behavioral task
behavioral1
Sample
a9d462685dfab2d55864575ef694421fbcf908030f6ec18bee83302efee5cbc2.pdf
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a9d462685dfab2d55864575ef694421fbcf908030f6ec18bee83302efee5cbc2.pdf
Resource
win10v2004-20240611-en
General
-
Target
a9d462685dfab2d55864575ef694421fbcf908030f6ec18bee83302efee5cbc2.pdf
-
Size
94KB
-
MD5
5a5c509bec0142b31c594a705993a74e
-
SHA1
98c6c4cbc4114628359e48c45e7bf708b27bfe64
-
SHA256
a9d462685dfab2d55864575ef694421fbcf908030f6ec18bee83302efee5cbc2
-
SHA512
32b7200441cf61fe256b3f944b12f566b1a41787c20da7d0e559b20c9f84fd45cd98c312394c38f01e8fe56a3f837adcb2a1d45b1ddbcb9af3c0a5a51338fabf
-
SSDEEP
1536:MZixgzEd/+moCCzPiYzizqPoalH3y2Hy52HI9qzYEijmdRnnLO2BRlOELQXcjGE0:HugdloCCzPaqPoalXyIy5kxz1rRlOvX1
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
AcroRd32.exepid process 2984 AcroRd32.exe -
Suspicious use of SetWindowsHookEx 3 IoCs
Processes:
AcroRd32.exepid process 2984 AcroRd32.exe 2984 AcroRd32.exe 2984 AcroRd32.exe
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a9d462685dfab2d55864575ef694421fbcf908030f6ec18bee83302efee5cbc2.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEventsFilesize
3KB
MD5063bcda0fee9565888a0eb4b1e799271
SHA1b3df6b916cfe5f167d64d28c7087adfaa8147ec4
SHA256b4f01817f8086c2177994af25611f97aa320e76ece2ad245097a873e1d567d4d
SHA51209356df3262c74eb671c007986ecabb22c210686d87551ffebd0b9239997ffa926508c770f31db6f5e5398a53980982a50fa816e3340fe0fabf5a1e3eb7a6c3a