Overview

overview

3

Static

static

3

634ba573fc...61.pdf

windows7-x64

1

634ba573fc...61.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 04:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    634ba573fc22dc831c3052ec36797e61.pdf

  • Size

    77KB

  • MD5

    634ba573fc22dc831c3052ec36797e61

  • SHA1

    dc3c2d3eb9db7128fac5a61fc6a3a17b7517539c

  • SHA256

    793845e98e5ec11537438c307d5f66ab59d538b5b29f9ddffae250d551a7d4a3

  • SHA512

    71280dc08090c9600d49730e31d10b868a0cce89075f95dd0ca573b941648e54bf994c45e7552b6b5193da7682816c0b1d00034784d72bc089d273a1d117639f

  • SSDEEP

    1536:7A9JRl5brRl0/3+CNTd4yN5stD5WH6Elvy8RqJyCQmnXKtXzlNwfj8fZX:89JPRtlY3pJ4sUD5cvnGWs6tXBNwfj8d

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\634ba573fc22dc831c3052ec36797e61.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    93049ab9bfc6884b1dcbb05d757a6c56

    SHA1

    0794beb684a59705a35a564f41359c3a75a97e4d

    SHA256

    ac1c855d856e30e466687a51ec0c4e14e5d50eeeba63ccd8fa9ebbfbbe33aaee

    SHA512

    5ad129487f516a572de84be76eab20a3c8df968f8efbded1813191c6985b2e9bbbcdfb554d62c6ccb4a5bb1b72eb6baad057ec419ba9d564646ffabc6e47fd0e

    Download Submit