Overview

overview

3

Static

static

3

11a5433832...87.pdf

windows7-x64

1

11a5433832...87.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 11:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11a5433832865defb9cc58daa901c987.pdf

  • Size

    80KB

  • MD5

    11a5433832865defb9cc58daa901c987

  • SHA1

    81e0def31a1a2f9f85da77b169cba7c4e97690ae

  • SHA256

    fac92076effef6baced8d58d004c5da1589d34e567d1d79407379391f2692e6d

  • SHA512

    b1e1c20dee12ad6c15dcddf352042be93f2a29881d15db3d0f6df2c96639752fa94354956a2c7e91a13ecb081ffa8aefde8e651b3f2ea1a64b737c74e44a1b34

  • SSDEEP

    1536:dadMk9+jD0UqO1M+Gds6g8Wq2ae5/BBqhWx+1NJNJQ6qW8pO+I5L:vk9UD0UCvVgVZakBqm+tI6V+C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\11a5433832865defb9cc58daa901c987.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1592

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8006ef9aa34d91830777a54ed40119e0

    SHA1

    85263f44ef5d485c2dda08070f4cae0bd64d4a5a

    SHA256

    3fa7586efb2175ef8b387874d06187b91e5b98ce7aa03479b03c579544b1ccd0

    SHA512

    423fe296a3a183b981021a5c32e78f87209d83aa8a33e04c314bf9ddac30da3ac74c2aa6ef33ff854afc9b49f2fcb6331063b90b296203cd2fd256b1998b2870

    Download Submit