Overview

overview

3

Static

static

3

da639e6697...e4.pdf

windows7-x64

1

da639e6697...e4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 15:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    da639e66978f52006fbfe87df8305be4.pdf

  • Size

    42KB

  • MD5

    da639e66978f52006fbfe87df8305be4

  • SHA1

    32d3f428474314d9075188ebb0cba016d0687289

  • SHA256

    a1f8eb4509b8cdd5ff297b783089b385082ff8cf534aeea983e5fe667c0dde96

  • SHA512

    48985801c7dd4ba351f2a09eda5466235bd7158889b7164ccdad9d407529ab848084af0911f41b28fd560c99bfd3f2eb8514791acc0a1eae6fcb9daa2657b3cb

  • SSDEEP

    768:tj2w1K/u+GZXTmBMowFdTFM/Revk5cs+Mn3j6oxvgsP1N3UGhyPI7gXs2hiQZgOL:tjP1Km+fSsdhhyQ7D2hiQeOzf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\da639e66978f52006fbfe87df8305be4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ce4bf568979d92c665da452c3cc9c1bb

    SHA1

    ab8f0867f75e6b06c881e1d5cd1992aa1d7541b3

    SHA256

    336fda30eeed268c96b68dce0dff194bfb383bfe453ac3acadc7bd4540ef6501

    SHA512

    193712cd842a225c34c0f5e99e0e042a43cdecce252c30794f1ddacda1bab7f3edad5122ee21fdf0e5e92c70ecae83d3a47d47ac7e31c907704592403dcfccaa

    Download Submit