Overview

overview

3

Static

static

3

1e429fd988...b7.pdf

windows7-x64

1

1e429fd988...b7.pdf

windows10-2004-x64

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e429fd9883ca756d56413539598a7b7.pdf

  • Size

    82KB

  • MD5

    1e429fd9883ca756d56413539598a7b7

  • SHA1

    7a9af269c78a852f2e0fb5e9c6d0fd49d07b9267

  • SHA256

    a8d33e92847c420bc64bb3494d3ab366f7a765ad31758175d5431733228b99e4

  • SHA512

    5bfc624aac3e84fa5a63add7feec89ff4022f5e104ed90108473249ef89ee687be96e1731c6166068e79756c478aca873c554f004c7538ec20547c2b081a7444

  • SSDEEP

    1536:K3whJ55ndCMvzwf3XIiss87leu5+nbfuZDIgNWhGsI3ArkhWspORGWEfhIQDzUQ:VhJ55dCAwfn0s8Z5+q3weQrkYRCDb

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1e429fd9883ca756d56413539598a7b7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2548

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    80c37f576264ce8b7e70aac48be64577

    SHA1

    6cecef631d01f9cb59f7c492e6fdfd251d5263d6

    SHA256

    58da5143c3a8aa7d46302fd982ed63070d8fda40cc33a74bcbaac86e97b49e71

    SHA512

    19562af7e3062f8af09ebfff91ee37814a0521946ee992bc92c3fbcfad0d8d98d4ca88fbc1ffee958928f3493b3108375fa415318edae5c71ae945efa8dd139d

    Download Submit