Overview

overview

3

Static

static

3

361417aaf6...4f.pdf

windows7-x64

1

361417aaf6...4f.pdf

windows10-2004-x64

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 13:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    361417aaf691672ecca1e1414f33ec4f.pdf

  • Size

    69KB

  • MD5

    361417aaf691672ecca1e1414f33ec4f

  • SHA1

    a0d0de1990bf75feabb8bc1a4405fc5f999168a1

  • SHA256

    d44e675e5708674adc8aa8b4d39c6d628481beae95416d0f106dec79f4cca171

  • SHA512

    cb699faddaad9a19df6714c01a815da96afaafb48bbfefff942bf3d2cb635a9e2b6568ce301b967d97a29c279831eb9fc22cdee44f637c4c4df245d01ddbb4d3

  • SSDEEP

    1536:gXyMyzI3eE3I2QwdZitoixsMWjLl4m3WXpO/srB:LMt5swzitJxsbl5/C

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\361417aaf691672ecca1e1414f33ec4f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2405fa3a297b4b06092a34e54b9d4ce8

    SHA1

    167266d88b4e9ade1de35aee6b8b3b9348dec7df

    SHA256

    be7e89c772a2aa33c37b0783f103ba4c3a772052f81266be9ffbc5ca7369ef95

    SHA512

    94ce52859f389597ddb4ec7bdad30b1d22075bc672a21c2f8969764b672c7a20407719c320d1dd9b7aa47e4c5c5a6c2946894e6c0f6a181b84df3c7251678924

    Download Submit