Overview

overview

6

Static

static

6

4944d1f5d0...c7.pdf

windows7-x64

1

4944d1f5d0...c7.pdf

windows10-2004-x64

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    19/12/2023, 15:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4944d1f5d0090b77a310cc7c94fbefc7.pdf

  • Size

    203KB

  • MD5

    4944d1f5d0090b77a310cc7c94fbefc7

  • SHA1

    01fcc115da21d2c7a91feb39b78ea9413f3eeed7

  • SHA256

    aba2a90a568e41a3661f848ee0f0f127cd7208218177310a18d117f29912c14f

  • SHA512

    408ad75d3b8daaaad5090bb7fc6ce2d7a95cca9ee7c89ab6793e1885be110f424060b5f4aa97a6b2656005c44d6a5f3a2ffa45b15843a13f57212cf86915077c

  • SSDEEP

    3072:H464vEPRR9kG8zvTNP3jPpDSxb/2HOkLBEJvwzkQ0hYuk9xfEobtIWnrCl9p:H4WkvTBcxbuHOkLSvwzhuYR9xfErYGlr

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4944d1f5d0090b77a310cc7c94fbefc7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2212

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1dd09aaadd389f7538a0d1884d611b74

    SHA1

    4f6e870bc2f42d4bcc6cbd4fe80b36b880f095de

    SHA256

    9f3fc9b417d04614d796c8823c90fcce9ad83178926105b8bfb40f23a79e69dd

    SHA512

    ea5c20f96bb450df1a4c618009d5d9c4278b3d8e71afdcd6dc09a5d4a5e23780977bc4a0a9755b26254562c202f5750359328b89eba5e2ca6ad1e4c27456aae8

    Download Submit