Overview

overview

3

Static

static

3

a8270004a1...e1.pdf

windows7-x64

1

a8270004a1...e1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 13:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a8270004a18daa49248ec2a3a242dce1.pdf

  • Size

    120KB

  • MD5

    a8270004a18daa49248ec2a3a242dce1

  • SHA1

    c81921299c03f28ac84a96fdeee7b0872273e71b

  • SHA256

    46510e4f959d213c06fda5757605314e7d7ab566f03d13fc22244b8fa5660f81

  • SHA512

    7c53a6d1cd23ca45085954dce4d656afce647c00f6dd21014ba9e1f067f7d17ac8924fe8fce90e9fb833bf15817382a444a280e6eee78bf233764d062da363f2

  • SSDEEP

    3072:ykU55uIxFU7ExDI0onCfVfihz36gzj11JC:y/z/U7ERoCfxihd3s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a8270004a18daa49248ec2a3a242dce1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2616

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b6092fe39bbb4684debae84d5cab34de

    SHA1

    fb979c82ac4eeac404ba15cb9e6e824920ed56e1

    SHA256

    a9505978ff358c37815dc78d0e8bf2b60eb0ee99fd8776556d63f8b2a19a806e

    SHA512

    d1629ed82cc113e9c8597796ea0c56d3f40debca148a12c52d4f800eb9a41713ed8fba1e8cfc9eb76664c8a8db8ca791425baaf56a203263c65eca1aa1a51c43

    Download Submit