Overview

overview

3

Static

static

3

a2973c979e...71.pdf

windows7-x64

1

a2973c979e...71.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 13:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a2973c979e0551efe63cf945fcc71371.pdf

  • Size

    35KB

  • MD5

    a2973c979e0551efe63cf945fcc71371

  • SHA1

    7604ac8225a76f5135fdb9a717f81fefea1a3d3c

  • SHA256

    46bc9671f9a0f3aaa1e2185b89a471ad5295af01bf8ce0be44061bf7ea028aff

  • SHA512

    2b6b1c3a3b9222667bce3084de680725bf510309db44e6acd4d83f5f5b0fef76a024ec17d5dd35250d4982310a36706cd1b341aa12e0df856548ad1c9f5b81db

  • SSDEEP

    768:uoS9kZehCseWB/hCvsEDp5sfkXpNJ3LUiRM9IKOvSYe8:u7uegWB/h4Dp5sMpNJbNQIKOvDe8

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a2973c979e0551efe63cf945fcc71371.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b7dc8f15e46249cf1b88d78ff04ceb84

    SHA1

    16f16cc43a99ff36807dd3746f186074441e6464

    SHA256

    c7c3690540b60fa82af642cf6a81d164f24eb3b278015049b4d3bbc60a3d6822

    SHA512

    212253df34859583f27d3547b3964ea088cd3e584c3f80d6b6559caa2483fb3184c089fd4549cae328ad326e5e3c7ef9c05814b36ee18bfeffc17f3093c2e203

    Download Submit