Overview

overview

3

Static

static

3

af69389cb1...e5.pdf

windows7-x64

1

af69389cb1...e5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    af69389cb1a4843b16998034f903e4e5.pdf

  • Size

    83KB

  • MD5

    af69389cb1a4843b16998034f903e4e5

  • SHA1

    a302d590e65910d7f68eaffdcc1acd989b5e7b6c

  • SHA256

    63dc0c1e19a1490739ca33d1a37b65f60105d9a27b2b206a01dae3315f866307

  • SHA512

    322ba4151da9a817b89bbef9db1220773b1d7149a4bdf42032d616b726f5d0a65d69d01524a504cc9a4112359f19eb907de706e76d80ee09fe4745023e248a00

  • SSDEEP

    1536:1b6QAk0686gB3KvIuLUafAl808PR9+TdL49ZWbpONiWSmd+xIn0Klyt0:16Qg68J3KvIuvfAidLeL49bNPEG0Sz

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\af69389cb1a4843b16998034f903e4e5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3016

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    9a3f1b05cbc2932fec09b1dcca58ab92

    SHA1

    cbbcfbcd504df66e2768a215254fdb7d996f0efc

    SHA256

    9a8b36e3d0e8836f06f53b2f60616c3a6034a2b6b0e39022a54673bad8be32c0

    SHA512

    d6680d4869506c0273dd530c457b94810ca2eddca35ff0e078bcca2b2f025ef6d717774d0a8532c78c897539482cbe228e4f88f850c9d08ba9bab21ea77989be

    Download Submit