Overview

overview

3

Static

static

3

25283728d2...1f.pdf

windows7-x64

1

25283728d2...1f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 12:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25283728d2db31b560223fac620f271f.pdf

  • Size

    81KB

  • MD5

    25283728d2db31b560223fac620f271f

  • SHA1

    26c06faa2de67b14c5b8a6c78a781bc6cbfd5e5d

  • SHA256

    84953b58b2311566b93245d5c176fc52e76e5da97fc03af99f725561370fb6c6

  • SHA512

    60a6e2a742558e23550a5321e03b2f2a89ac4d6ccde39beb9c5005d8a85bb2ca9bc29928e614548b0caca8b9e7274bbdd3082a7896fb1c4c8e000a71b09d641f

  • SSDEEP

    1536:IVvCDaMjhGX7ktmk6iE15Z2WanlxH3uvw7j/5h3G0PHvFUkIWZa5UWwpOS6MW:MCeMjYXIg15ZyjH3QodxnOk45zS+

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25283728d2db31b560223fac620f271f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8aad4dd78767d0a8f788fa6a1f964728

    SHA1

    97fa706ad71313c33c7267ce0575207e8f54558f

    SHA256

    471007edf13ba5db9f8553596c4a090bd64e5c11a69f53f138e03eedfffd9adc

    SHA512

    48b959f42465cfa9b49b4c3ac06c4b1e2a2382f3f3a323e7b1bea78c861666ca5492bbef4294d682904b32aa131ad0a2fd3c01e0ab8ac6224cc3ed186758840f

    Download Submit