Overview

overview

3

Static

static

3

143ffce7f6...8e.pdf

windows7-x64

1

143ffce7f6...8e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:28

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    143ffce7f6b33f9e5db3cfb99b88978e.pdf

  • Size

    80KB

  • MD5

    143ffce7f6b33f9e5db3cfb99b88978e

  • SHA1

    2b3a40e509b25c9c92761071081e70e8eb8f5e73

  • SHA256

    376a043f834f5c464bdbfb894b40ac5b41ba57c080995ff28a31917c8d8778e4

  • SHA512

    7817ab38efd1a185f68ae76d572768e3394417d23a8b93a203a0198893a7e25d9455214b9fe0fd5641b4daee10eb2db9ac2519214f285592b241f40413d91299

  • SSDEEP

    1536:VVmEhoW9G8U1Zmtr4rPMXZiaZxXv9oGZV3gAc+21dWOpOwrKWI23lrViJg7S:aDWc89tryPMMaZxfVVFc+216wrym5iN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\143ffce7f6b33f9e5db3cfb99b88978e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    4366ec9e1d62e34bb299635a27943983

    SHA1

    d44548280490c60f33c53a20422682e0eaf45579

    SHA256

    2ddd45c8ca0594063853d0410150fb16298a0b79e9e0e8b56a206057ac0e306f

    SHA512

    ea3c57ee1b245da2d4085b27dbc833e116c9efc2ed2cb8f6033e6ca6e0b7a5ab2af5f6c04ab75276a25f37c9fd2f08fdf41499736799b673c3d34c3dc5d6602a

    Download Submit