Overview

overview

3

Static

static

3

9385fa6c89...fe.pdf

windows7-x64

1

9385fa6c89...fe.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 12:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9385fa6c89020ea2f07aaaa494b3aefe.pdf

  • Size

    35KB

  • MD5

    9385fa6c89020ea2f07aaaa494b3aefe

  • SHA1

    f434c9d26a877eb9568ca79cbdab8606a46f1562

  • SHA256

    685c5458573bb011957006371294f24c732223fda88f57b5c4870df9964a21d6

  • SHA512

    fe2b547e8ade92c9934eb5db6c08f5722bd7d3adf2b5e8ebca656d7202adaef9d883fc293eea58c8d9361ad27c5eef5dee94f05293d1fde1b60110fda8294172

  • SSDEEP

    768:H3h5nUbxLqsyNQiNawhGsLpfW6bCD2NAFDGilX0E6BvWeRx8:X/nAxtiNawhGsLhW2CD2uF/5Zi+ox8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\9385fa6c89020ea2f07aaaa494b3aefe.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd69351743fc256991c2529463a7dab0

    SHA1

    dc770a4750c9a6c6f8e3e51872b54b0889ab8257

    SHA256

    542241e65e9bc980e55ca328c7d201502cf21db803422e260fbf6f436afea3c3

    SHA512

    0275fa49d0684db7024afd2b75d14d4a06380cf6078a0a1d83aa38b4fc447895782abbb13af764725d5b1d666c725ca9f45f545b9d707bb91ea1ec935df42791

    Download Submit