Overview

overview

6

Static

static

6

169f0f2177...fa.pdf

windows7-x64

1

169f0f2177...fa.pdf

windows10-2004-x64

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 11:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    169f0f217719c9269ce8b8973d1622fa.pdf

  • Size

    80KB

  • MD5

    169f0f217719c9269ce8b8973d1622fa

  • SHA1

    3bcadadd964b59cc369399a52bfcbc9b01e852c1

  • SHA256

    ef2fe2300a5148da2416cd394a662ce328bb54c1d0302287cf7093688da009af

  • SHA512

    948714dc516fbb62db5baccca5e25a9ad61175da4ed2390da1572225880b15abc2e44c55d32456e9124a6d0470ff3258f8c9fe9cbb2b4b47d17d114c33ceafff

  • SSDEEP

    1536:fjPksRCo10QBQiYG/5To4kv+WMZUM/gUSBI5lfSmqpV3OHWspORb:7Pk0Co16G5To4kE7oUqInfSmoVO2Rb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\169f0f217719c9269ce8b8973d1622fa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6fdbc00e2b92af769bc6c074a44d8154

    SHA1

    6378601a214fc38d305a28bcdb7f3a9d6966ddc2

    SHA256

    f9a7b61ad28834b9f399d63161ba05f5427f3ba5d7e1cd0574bf6c8cbdf0dcb3

    SHA512

    7a9bb3bc9382ddaedb331ad1b02982b764ae8a8f89cb746c3042a7fa4bddfd72408b0bbdd711aae2a78f4cc25395d9fe333eefdb8cb4eb8b4c14d9c5b48c06f9

    Download Submit