Overview

overview

3

Static

static

3

a1fb304474...c9.pdf

windows7-x64

1

a1fb304474...c9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    133s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a1fb304474bcf3c1765a13bec0d8a8c9.pdf

  • Size

    35KB

  • MD5

    a1fb304474bcf3c1765a13bec0d8a8c9

  • SHA1

    afb2a67c7f0d16b6eea791a9343bc47d41d08b55

  • SHA256

    fe0d07b805498f02c16de62d4e8663ac54c53deab1b70a1158649392eb3326af

  • SHA512

    6ca1337a246e0d3aa280edb82cf8f6533c90c6553e1c5964b0cea5ac99c3acebde8fe95cb6ea0af57069045e2b933cf77b769ec969efa876b70fbbf333fdcd7b

  • SSDEEP

    768:qWfpH7/UVvhsc3KVsYGtaumnYWqbWxriR1SxSxteb6Dn:tpbVyYQmnYWqbWxGPSYteb6Dn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a1fb304474bcf3c1765a13bec0d8a8c9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    aba6aa87b716c191e89d79b3b5eafe8a

    SHA1

    20d86594ea86eb1862b846e116bc3b6f1a4fedf5

    SHA256

    2febdd5a20e10126a58fae8c2eaaaae441fc89c9df8296be14c639887408bf8f

    SHA512

    dd78dcef2da33fef71dd1ce63c76ef30d4e73e0b9d51b30a0223fa08e966e0268f2a5866d0ae531f6d8af98cec5b95f3d8f7327bb7ad822cd5ae997c5102c591

    Download Submit