Overview

overview

1

Static

static

1

2411711993.pdf

windows7-x64

1

2411711993.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    96s
  • max time network
    18s
  • platform
    windows7_x64
  • resource
    win7-20231020-en
  • resource tags

    arch:x64arch:x86image:win7-20231020-enlocale:en-usos:windows7-x64system
  • submitted
    27-11-2023 03:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2411711993.pdf

  • Size

    74KB

  • MD5

    ebe24bdc330b46bd1b2750995b17b5db

  • SHA1

    a7c3c9e24de25622027bf7ed4be5faa734b358b6

  • SHA256

    31393f02dc136133db4f3b0fce700d77779af3e2eaa97086ea6c3a5ca1c40f92

  • SHA512

    ebadd260b843f732dfbb876326fbd089b8d4619de3002bdf5d86eed92869cb2f5670154c311ac9fd29dcdcc179b8f23134026a089e7305961025efb4d27b4f70

  • SSDEEP

    1536:oYpvRBTpqYn7Zjfp4ljM/N66dOZ+ncyCz2DCvK/WhBSJ:oYTBT4Ynxp7gzZ+nDCz2DCv/SJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2411711993.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2172

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9ba314ecaef5a4bccc998989b6bbe68c

    SHA1

    723b7195ddf19a41c5dc39aac37104d5b5c3f2dc

    SHA256

    634b1894cbe55e4e2d0a61b7de6f95d5bb13b13ea56771a2e2f328d60caec4aa

    SHA512

    5fe9bf8510067be4deb87add18819c834290411736fc4d3adf986c364d0fe0fe1bb635108aac07679b8bdc0c98924201749301faf3fb82ba1be6044385a13137

    Download Submit