Overview

overview

3

Static

static

3

42e2f05a9e...50.pdf

windows7-x64

1

42e2f05a9e...50.pdf

windows10-2004-x64

Analysis

  • max time kernel
    122s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 14:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42e2f05a9ea9c2796fb87e156b4b4e50.pdf

  • Size

    73KB

  • MD5

    42e2f05a9ea9c2796fb87e156b4b4e50

  • SHA1

    a464f197ae9d9e68d252f33fdeec4e3868669bbc

  • SHA256

    8282a06fc828b3b7e8ca61eecc4bc2db5f96e8312a80a81dc5dbdebc033dd225

  • SHA512

    ac7a30b28f678147b983adaedfffc81764e4ee199b9c6fc4bc1fd69124739cceeda8e101b5c652176740bef4f31d1c0f58b0908a3ff85b4c1f63339e3972fc80

  • SSDEEP

    1536:CUSAw+ylG1dwfwv565LKSoSIV9KLou5KP1+Wxxfh/VW8pO+mTxv:r7w+oG1TvgoH9Ksuu1rf/k+4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\42e2f05a9ea9c2796fb87e156b4b4e50.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f2f95023a8d7e7f5a6ea0688ed32ba72

    SHA1

    29ffe3cdd0d8e86cfd262ac6f819e7fc67136f50

    SHA256

    1c6ff2cf1d292e3071f50bf8954dbf03d6fe0b04383543422648bd7472559752

    SHA512

    026873a936e3df3598772afb1bc9d06b9a3f67e4017dc434d4492cad095c6096b87cdf6071153953755218a9e9affdbc63dc5480fe43c97f8b2c64d2db64ccf2

    Download Submit