Overview

overview

3

Static

static

3

a75459f312...03.pdf

windows7-x64

1

a75459f312...03.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 13:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a75459f3128ea030a8a811199585f603.pdf

  • Size

    77KB

  • MD5

    a75459f3128ea030a8a811199585f603

  • SHA1

    03c7714ddb5cb87a95896e8ab71d3bbbfe101fea

  • SHA256

    1e37c19bed73b9d362b10776f9c877060194a998f586e00b01b04fddb335e78e

  • SHA512

    1456f1ab059ddf69771b9e3652c4878b3fd68de4eeac475b425defbcbd141d8b74f4f952015e22693419cf4bdbf4f02b7d1275450cd2e90c633f0ecfdf5db34a

  • SSDEEP

    1536:UQO+lnwdAXve1oFjaQUAt9zYE910/MJuSfIWXxZ0OxG81:yMMAXvcoFjHUAtNXI/qyWXx2OxR

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a75459f3128ea030a8a811199585f603.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2448

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1c148ab155289edd65ef048a0f968bd4

    SHA1

    5ec90cd52173bc6df83d0e06d43d79de7f399803

    SHA256

    5409542f863c65c7a4abbfdff01c85ef0acc63226c4a983cf5a55c9cd39abea9

    SHA512

    4633abc5ca7cccc7b7c9936cf02fe56b34ff288178c3af0fadc84e68f1859402586326d1ff52e0a22a8ec9d1545c49d65cab46d975335fec2e0206614864d491

    Download Submit