Overview

overview

3

Static

static

3

1292022ceb...8c.pdf

windows7-x64

1

1292022ceb...8c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1292022cebff5eac614eb0a1b209788c.pdf

  • Size

    84KB

  • MD5

    1292022cebff5eac614eb0a1b209788c

  • SHA1

    51897929552ccce2eb8846d51780ae060f8c71c9

  • SHA256

    be7c3e718b5f2251bacf8b4092c72c7a1c62bbe1f6c50e8e6822c46e905ead15

  • SHA512

    23570556ed8330b1d406a37d5c8b4b4f76adea84ee51e918ba184fece10acc3c12131a612c055cfe09284b68ca8edcf65c2df978d6f99fab8f617a9f1e208616

  • SSDEEP

    1536:Un7ml3lvSfCUdJ+hhCDyaLIX2Egk/HCMAThkwWypOlWWxNMgcZqJAHykmw5h:yml3V0E/CGfXg5MATh0lD/dJmykb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1292022cebff5eac614eb0a1b209788c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2540

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f1c22f23918cf8f29a026ffbd58316af

    SHA1

    df1e6dd9765be3df49ca2db01d339ea682df8821

    SHA256

    5fbe1fa8884fe2739ee6cdcd373382e9f4181d89d20d697a06b539c0f982f3da

    SHA512

    3fe3cc6bbc29249604eaad90e08e03329e7374544ebf326c5ccb433391e8e85164cb803220f238e496a3d7be992782830511afcb923132972c8124a8a6c68d84

    Download Submit