Overview

overview

3

Static

static

3

ba886dc1ab...8b.pdf

windows7-x64

1

ba886dc1ab...8b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 14:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ba886dc1ab16a31e0adf7d91b3ca4b8b.pdf

  • Size

    42KB

  • MD5

    ba886dc1ab16a31e0adf7d91b3ca4b8b

  • SHA1

    9f6e60bb34b62fb73af2b10666a9bbdf9000e8d4

  • SHA256

    4bf043f7b7528599f2e748217a8d17a8785a7382cb46d030446039a5b6e29b6d

  • SHA512

    28a49c66f4a42aae193d8ddaf4ba2db1d8a61d9806afe54deee975dda8a0730433db5576437ce77f1ef664e363057d763eb5d080bc4bd333f7e7657d3faf7e0c

  • SSDEEP

    768:StNpCNll9P4ieaLD1tLwPAHsiD1SpkRTBPnJJRxkVJVS+Y8dgAlx4ph:spQNeEiYHfAkR9PJLxwVpY82Alyn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ba886dc1ab16a31e0adf7d91b3ca4b8b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    55d8e97d40bbc4a979eefa412b2698af

    SHA1

    8a7feee50a04449b4d3e6375bcf0bc564e30fbad

    SHA256

    4532b2a8d41c665e3416f65a0d16ebd5b2d00fed6f8ec131f088102898545d5e

    SHA512

    b36a613c1c6246f0a33b3b7740ce4d4e90a14469d1e4833d438b095452aa39ca8aaffffbec7d1439fb38b97b029ce84cd77ac9a5063fedf9bfdc1c60716e0d68

    Download Submit