Overview

overview

3

Static

static

3

9945805956...JC.pdf

windows7-x64

1

9945805956...JC.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    151s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20230831-en
  • resource tags

    arch:x64arch:x86image:win7-20230831-enlocale:en-usos:windows7-x64system
  • submitted
    12-10-2023 15:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    99458059565b98fab9d120599ec3d690_JC.pdf

  • Size

    94KB

  • MD5

    99458059565b98fab9d120599ec3d690

  • SHA1

    c005f650e94f359931dc41fded44fc4202d40921

  • SHA256

    5b316b7183d2c3de8a9fbbd451bc874f537663f2cd94be2833be509d82fe0b97

  • SHA512

    8df2e7edf8ba976db96729e32442777194d401c44467d28971d3ced325496e0345a6b19a6fa8efa599504ba74eb9f93963f789163cde538ad4da6ea9409cad4e

  • SSDEEP

    1536:9K0+8+xvYfAY55dHcnUoKm5ExMWatPUpyryJB72OrbQSQW5VBtBW5bRPWMCmt8bT:PavYfA0kz5ExMZvryn7zrbBZWK48brBh

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\99458059565b98fab9d120599ec3d690_JC.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1888

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d2937275714f288729437f189fcd6523

    SHA1

    347feb4b8e7f3dfb87e25f486910e8fedd79dea9

    SHA256

    7da2e988a8179ecd31cd5daee21396ad7f55428746f0a991f1f5559096811fcd

    SHA512

    61c79006246270a334fff65a5a6a0ac8ee73173cfe7e09a1b62d81181690e611e31d2266048731e9c9253ff8317d9e71e331e6f494e298668c5acf099240a240

    Download Submit