Overview

overview

3

Static

static

3

397acad8da...66.pdf

windows7-x64

1

397acad8da...66.pdf

windows10-2004-x64

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 13:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    397acad8da92e0a3936ddf37fd661966.pdf

  • Size

    73KB

  • MD5

    397acad8da92e0a3936ddf37fd661966

  • SHA1

    d52d95220ac681e3c300987ac3f86ebf6e337d8c

  • SHA256

    04f2d084fcbf22fef8db1dc6750c11154b0741bf52e1b1d85eb110fbc74a210f

  • SHA512

    61e466b44564f941baa8bded68c94b40df54eee9212a498fbfcd1ff81d35accea900ea0e4d6dbfd06f4b91179245d9b11ec27fead4f02f56352e4af9a3551760

  • SSDEEP

    1536:uGTMIPvVrl4Bam73kNUvRgbAgxM0UfAVRwVw+OjN4W28KvmkNHd8X:bYIPdrlO3kGvB+U4/HNBKvPNHm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\397acad8da92e0a3936ddf37fd661966.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2208

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2bec662f0296edf911b0481339f0b99c

    SHA1

    0a57d2182975ef07a8ac1b574d383fd433b39711

    SHA256

    9e0f5f31bcc384035289d256cc53f068c203cd6aea29b4f529cb3692d56e672d

    SHA512

    199a29f3b81826a09c88145dc82df7d5275310355ff564652882505e2075e6f0b58e609d22cd8d6a813acec0a410d2b7aadbe918f303500a9dba90622312f357

    Download Submit