Overview

overview

3

Static

static

3

aba0a6cfc9...59.pdf

windows7-x64

1

aba0a6cfc9...59.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 13:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    aba0a6cfc94d7256689a981ef97e5a59.pdf

  • Size

    64KB

  • MD5

    aba0a6cfc94d7256689a981ef97e5a59

  • SHA1

    9beef4b5efeb9dc1db80848f4c3151ead908a38f

  • SHA256

    c22e82a7c57eb2bc40f140101282a9f65a4d338a0ecf6ccb7fac2a8c4c9d2a5c

  • SHA512

    86ec91c94e9f8d2640dcaccc142635a1881d757f585158619a89716fe7a5a6fb1d6e2691a7f745401d6e01d4684f85880b585b9288c176bee3d3da9788b9f20f

  • SSDEEP

    1536:+B5lFT/n+fGz3qsl2UPSRS0y/SJ69ujjZu/+plXO/:09nN+cSg0y/CjI8li

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\aba0a6cfc94d7256689a981ef97e5a59.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    67a317b3f15d8a32fb55286c860b7fc2

    SHA1

    912ed1de11d895865e34074aa73d70f282acbe29

    SHA256

    de76b6fc19720c7b85678e4efb3e0dfcfb42940e6595b74efaa38f6cf78674d3

    SHA512

    53c56c45d1982f4e890591e13a2a8b6313dbcb9a502be13ad9f76ff63f71e5a46e3e6c93fe58a3d3b8e89c29cb3a147b89b9541b83ef44446f1be27ef0be64b1

    Download Submit