Overview

overview

3

Static

static

3

d202019b72...55.pdf

windows7-x64

1

d202019b72...55.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 15:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    d202019b7239fa9f5cc0b72825a5ff55.pdf

  • Size

    44KB

  • MD5

    d202019b7239fa9f5cc0b72825a5ff55

  • SHA1

    7c9d292afdf8e08784bfea13009bf8fdd824a466

  • SHA256

    36db12637b8ef91f12b73795b02ea208c2bcca30ef3710e044d2ca7d3bcb19b3

  • SHA512

    689a387484b69214033a7332d72245751827a52af019b7c79ece66652e51388c3b56cdc43525919fb5c60aaf8ef01c84b649f72db81f461aa1873f3ea20414a3

  • SSDEEP

    768:DlU6bg7Wr6mqxGP3kgrEqP0nGSVp/KkQjONt1JDP6fLzjEdi:57M7WrwxICqPi1lJDPCjEdi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\d202019b7239fa9f5cc0b72825a5ff55.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          a8d9763279536d2486fd1442da9ab9ea

          SHA1

          b51810f31d9744a56c9ffecf1a437156670deca6

          SHA256

          4783c65d8e7b4bdb2108d6a7fddf37b69bd6745416106714f70a7acca32e605b

          SHA512

          79bfe3f9f9834e3d9f7658252757a4507b2ccbd6b22cf650c7f3da85fa6885b53654833db50bbbd76f5835995f58c1c15edc4c4684a90f2e1107c49f0c172a01

          Download Submit