Overview

overview

3

Static

static

3

2f04b94923...26.pdf

windows7-x64

1

2f04b94923...26.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 13:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f04b94923bb94bf9c52c37d4fbd1126.pdf

  • Size

    83KB

  • MD5

    2f04b94923bb94bf9c52c37d4fbd1126

  • SHA1

    186905971c76d950a999e67cfbad70114be8b0e0

  • SHA256

    3cee9d4c90687e553b1a81110bb524fe8a7ccfc123db17bba6f02027b6d616dd

  • SHA512

    f458e57470f296f1877654c1e546d8109ef86a2376ec70e3acf410653780616460bb79af3241a8bf6905b013c387e3c51fbf1dde35f05e79aa875fdd84c4198a

  • SSDEEP

    1536:3WgADaY8M69zIUm8E9Z+C81j+goW6pOu24DSUOPWnhfLPPzWa0h:Gpx8J3meu2JvcfLP67

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2f04b94923bb94bf9c52c37d4fbd1126.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b948d9bb71fa04a434309482d88daa10

    SHA1

    61b67c118cb5e7d768700e022e8e706f09825f9e

    SHA256

    b5dda37d1223a5dcc2292156a4c8e8a43ddc305dab34a03a2ffdafaa8b4de588

    SHA512

    4e126da58d2ad652618c16e28c85901cee9d33325931068bb5f56ea9a647fb508b094da07722bd34b8648267b88d7031a0083efde5ec03e8aa4a7da1216355d4

    Download Submit