Overview

overview

1

Static

static

1

file.pdf

windows7-x64

1

file.pdf

windows10-2004-x64

1

Resubmissions

28-08-2023 12:21

230828-pjn75adf8s 1

28-08-2023 12:08

230828-pa1jssag65 1

Analysis

  • max time kernel
    135s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20230712-en
  • resource tags

    arch:x64arch:x86image:win7-20230712-enlocale:en-usos:windows7-x64system
  • submitted
    28-08-2023 12:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    file.pdf

  • Size

    61KB

  • MD5

    e1e8fc8f06c26ad994a81e770c293eaf

  • SHA1

    140a3b0b0bada2a181b1f98aa50ec40d1f06a3e9

  • SHA256

    748eb649c09572b8a89011c31f2402d91a73484948c55905bf14c80fed73cf74

  • SHA512

    949b3dadc171743fdb4fc446941fd47d79540ae541f0d2140d579bc1d9ef7ba5489f7803acf36460f5bf6700ca060fd0f52abb7ce3ddfc6dadf251adba7d0949

  • SSDEEP

    1536:JBBt9zoBnFPz/fX2T/GEHUyQnD9J3zBJHHL6KKquU:HBPzoBnFPzXGT/jHQ5FnerxU

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\file.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3b432185731ae1e1063589de377f646a

    SHA1

    08f53bc114466d8e03e6b87b1dd17af285d6f466

    SHA256

    36834360d3586b9511769793685ae0f0e90fca0d4feeea18aad80a9e5216c9e8

    SHA512

    7baf41955d73127656492ab274f056c504c3f36ebec6ce40539f0792066cd17757044b9f953b5c794a2964ce9df2be943cac1c612d44aa7e74f0a958c627919f

    Download Submit