Overview

overview

3

Static

static

3

16c41faa8e...4c.pdf

windows7-x64

1

16c41faa8e...4c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 11:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    16c41faa8e0928a4f43a80a726e60e4c.pdf

  • Size

    76KB

  • MD5

    16c41faa8e0928a4f43a80a726e60e4c

  • SHA1

    5e72cb332845654cb58d4fef3ec5f9d2ce0cd0cb

  • SHA256

    cd8bae72d3073b1a8f23d9ca55af417e7d1739c264f4af087a57e34ecc50a555

  • SHA512

    66cfeee847d336f44164348e9c3e4c88745a3f0b5fba6d3422146c0aa663e41931c06f4d4f3b75a7dd273d5587334f814971495d1be70d77c9d84b8fc43590f5

  • SSDEEP

    1536:bo+H6QzgQfm2TmVM6f0SxBPx7/nh6WM7wo64Ybh2E0WspO2Ydd:ZH6+gQO2Tm26cSLPBnhjoFYbh2E32Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\16c41faa8e0928a4f43a80a726e60e4c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    93a2cb67f9c6c17fea1c113f664fe0a3

    SHA1

    cc3a39f12cbb93f42b14ba10d686586afa95d089

    SHA256

    4730e907f75010153c55092831e942a3a2b99a9ee959b52a0a056e42dc2c451f

    SHA512

    a21351ba89bd64c58eccb0741d12898fd681868627b419497b84aa2e3989d85acd4909a37c69b56216ee52aee6fcd62fc081b44fba74686f9070795aed6cb653

    Download Submit