Overview

overview

3

Static

static

3

36463a3d4a...7d.pdf

windows7-x64

1

36463a3d4a...7d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36463a3d4a8e03bf0ad30819ad56be7d.pdf

  • Size

    63KB

  • MD5

    36463a3d4a8e03bf0ad30819ad56be7d

  • SHA1

    2f2c1d4ea941a9ca6a42992a3f31325332cd8472

  • SHA256

    2fec0225ae97a6bd75babbbbd332cdf3d5216decdbd90bda635c6f6a897cc7c1

  • SHA512

    17e455d0d5feedc5fcd0e73898036aa5d9109418e67be066c81aa5eb6b3301deda099ccec1ce700e3f3bbe869aaa03e99e6863845175c7f1ab9be49bbe17e32d

  • SSDEEP

    1536:xWBgoY53NOYaRXJkG+k9DtgpIz9+z5VXMh81/qF:kBg3HO7R5P3cpIoMhOE

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36463a3d4a8e03bf0ad30819ad56be7d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2072

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a2b154c1314a9487b96e820ac8e1c003

    SHA1

    fd99f0434cf8c23a5bf77afdc8be01b69b0b76ef

    SHA256

    7eea6958554d5c3aef124eb945284de80f861293343322bb2de975d3f37f331f

    SHA512

    db28c3670d7870471c331c8183dd692e4c14ad96316b95f1a23ad5736005a4c879d3a3d73dd30e1f08ee38c0397c6b4063e7ac36090a69fad574bca4dd00ac3f

    Download Submit