Overview

overview

6

Static

static

6

42dd63ad72...ee.pdf

windows7-x64

1

42dd63ad72...ee.pdf

windows10-2004-x64

Analysis

  • max time kernel
    120s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 14:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42dd63ad724089a12f33bcfb60dbaaee.pdf

  • Size

    64KB

  • MD5

    42dd63ad724089a12f33bcfb60dbaaee

  • SHA1

    4565d01275746e103390f01a86ba9d45c60c0ca2

  • SHA256

    5b0455629a492fc54922bf934b61d1105b5748afa8431a5a0e095cac406f30a1

  • SHA512

    ed7d333448cbcccbdcbd3a1e7ba0541c5ae0f494ff8064056e67b18f8ae83f483a74b3cda4a72ff5d1511a5ce1a5bd6dfab409c81c095b916dff87575b6a17fa

  • SSDEEP

    1536:hCF6LHz4hg6Wj0r5I3fzQ5sCDdEbm96amkMjVnWapOtQHWk/:26LETlrG3U5s3q96acqtQv/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\42dd63ad724089a12f33bcfb60dbaaee.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0cb1b5e5481022d8136a99662a86ac73

    SHA1

    6b3b394a1cb5c9ac3624830176dac046e2d6996a

    SHA256

    613382f9f9876794dc92ceaf9352e81ba590b22031787095df057a1831eca2e9

    SHA512

    e468f3e4a06c98d3ed4557a80746bad62a8835bedf9f47551900003f80c7876d1a21677a6fdceab4e9d959f4b90f5bcd1cd929bd0a37f572a3f214d4289c4d57

    Download Submit