Overview

overview

3

Static

static

3

.pdf

windows7-x64

1

.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    01-07-2024 11:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    .pdf

  • Size

    164KB

  • MD5

    9b4d4dfb1a4d82a4e1dd893a78f9c3f1

  • SHA1

    fd8b8bf7cba685975dd35a54242e0c0ea809885c

  • SHA256

    7680f0154b17622f1dc803c42be3b8a94eb970ab1a1012183f11a0b007e6a258

  • SHA512

    8f24a8b276f8f4a332bf508cccc28d71f1aa5821735e8f56166ede5f9c6921a5c5a1e7bc0f5e2e17ae94a4b1571ff1c3ef38b580c66cf601b0317951aa7968bd

  • SSDEEP

    3072:dQAA3oO5mCbhu4xUyYTrqa7ha6dVJ8XnwWGtBUOKRf8uGDB03:6zV5/Uprqa7ha6dfSnhAruGF03

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1944

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    923a59a25106561ef6143b17d91eb3a6

    SHA1

    e7474a632717248ec36bed6e09358a985b85f745

    SHA256

    172c89ca9647fc3351211d1e72d01d5653bd9178470382aa9045dacb83342d99

    SHA512

    269b461d6ed69dc1d8472c5234e7f5c546cb4a882c018b33db705e4ec2db5612501d0b82ac494c9377a8a4ec11ef0f2ce836c85f97ea629f06fd30a8d37abacd

    Download Submit