Overview

overview

3

Static

static

3

28132a2a8b...f1.pdf

windows7-x64

1

28132a2a8b...f1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    28132a2a8b3946101066c40eb05aedf1.pdf

  • Size

    81KB

  • MD5

    28132a2a8b3946101066c40eb05aedf1

  • SHA1

    16d8071cf67684789c0773187674b44cafb523a5

  • SHA256

    aef2b83b17213afff0b7bda94110f1713b490fad2b1070c07457fa4d785cc8ab

  • SHA512

    2e09a584378fb1ae66b39b00ce34a686425b28dec1b6aa1fe2a45b96cd59b39de86c1d85fba079f1b01ea59ad9bd4659ebd67242036191d1566ad3f3e39789bb

  • SSDEEP

    1536:eHBq/7rEY4IwzWIky7/eUbMEsAZvRVs6spuOW8pO73Wwm4+T4rjOUe:Wq/7rECwlbM/YsvpuN764ZrjG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\28132a2a8b3946101066c40eb05aedf1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2076

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2bc506f8fa9852f0b7140160292d6fa7

    SHA1

    7bcb0edf2dacaa759b566132c458c6ca2514adda

    SHA256

    781ef73ba5b0ef58a0f3a06c87c95bc149b212d7c0029760a5a6f9644344b0f1

    SHA512

    1889050dfb6e6c627c41e33b07a908daa3fee121641f2468593f2a08497e2a697bc03254b1893dbee202096437cf1a2b161d2ced195323dd6bcdbe400eb18f93

    Download Submit