Overview

overview

3

Static

static

3

f41ba2720b...29.pdf

windows7-x64

1

f41ba2720b...29.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    143s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2023 16:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f41ba2720b045263cd5443fc53e02529.pdf

  • Size

    44KB

  • MD5

    f41ba2720b045263cd5443fc53e02529

  • SHA1

    5176693dad48a30cae9959eac134b793e14fa481

  • SHA256

    734521cea397e5edb36ba7d14245ea2dffae6d39322dbf70e5ebbe1fb98ecf2a

  • SHA512

    1d265e894ffec9bf1e18da5efb312d2ce7514b310a3318bfd5e13649d7ca56be9700797b803ba067653b18849bd0ad4e34a16a24d502239bcad154be55b55df7

  • SSDEEP

    768:b/Oi8OlIyF4kscmEw3jOm+DWu6WnHhPG8I2YTP8sxgGEqsWjXBMbD:zOPkmQwTObeX2c8KEvWabD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f41ba2720b045263cd5443fc53e02529.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    189406621f86f8090076d249fb4faeb8

    SHA1

    fdfe1dbe1f1f848f17fe80b65b3d3d97115d00b0

    SHA256

    65bed353ad841e66466da64523269388a9b47b619163ec920c7a114fc10bf278

    SHA512

    8ca8b83d699b640bee18fcc7c2c847f865ad6367a32f7901fa9e569ad07eacf0b568c2eb0c130d91674e1ee8a71ade0e511c7c0d9a2959e7ac5db0ff43464849

    Download Submit