Overview

overview

3

Static

static

3

4058fbd01c...32.pdf

windows7-x64

1

4058fbd01c...32.pdf

windows10-2004-x64

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 14:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4058fbd01ca6d8485f0430c6a3012032.pdf

  • Size

    33KB

  • MD5

    4058fbd01ca6d8485f0430c6a3012032

  • SHA1

    58f70513798d23b4859da4c3b463d16ec4b9f5c3

  • SHA256

    c3f23f2dfcefa5c4272aa8936873546d91c41392db0368af06e02fc14c730a22

  • SHA512

    5c9d25ac2672295ebe91bb3eb3f7d0ca75c1dc0c7001849166f429f811f0bc41a9bf07b276dffdc818d76080557c24f51f0d61f3b1a251bc88ff329390694c31

  • SSDEEP

    768:vWU6AQJs12VZP+4POxK4aQEMR11HZe2p9:vR6d3V5+DxK5Qh15zp9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4058fbd01ca6d8485f0430c6a3012032.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1736

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e32ccf586192fe3010860556a0cdc92

    SHA1

    49703d5133b936edf2990a048f3170a2ab51622f

    SHA256

    df7afa5abe92bd3fc651d179f3ce37c37bdb98305336f03c33ca0e88f3d6701c

    SHA512

    9584007b6cb4b2888d51a2c022247b0a67445690fa5602e0578ef0307c545b8efc45220b7b34366e6ed475f578f4a2391ae693178bfcac486c653f0d33cb538b

    Download Submit