Overview

overview

3

Static

static

3

eafba20e3b...61.pdf

windows7-x64

1

eafba20e3b...61.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 16:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    eafba20e3be2c36fc02e9516cecf1c61.pdf

  • Size

    73KB

  • MD5

    eafba20e3be2c36fc02e9516cecf1c61

  • SHA1

    549d124166edc734e3f3faecc19beadbd6901849

  • SHA256

    58aea4778926e8cd157f836e8318a571171b4283a42ce69fba754689866f5f67

  • SHA512

    3484a968f0acf315eea9cc1ed673d90d7c3f7d69a7be8ad2e37fa4052c8d8b3a46dfa035c9581b34fb34de93724829f66c51bc494f5fb8330769b02041539261

  • SSDEEP

    1536:fAtClCrwm5U3O7wNDuvc4tRzcu1ZhIT+Eof8Fh9jkqxd51VzliHCth06TF:S57nvc4ttcrTYqZxD1Vzliith0E

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\eafba20e3be2c36fc02e9516cecf1c61.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f54914d095940285bb9d32d47640ddaa

    SHA1

    94698fabcd836ab78b8a17c5cfeb908740bec9a1

    SHA256

    a9bb439ede646fb4da63ae7633b98895f887382b5f226d47ba255aef2d655373

    SHA512

    e425211b282d3c783dc9d1c3bc51aceb5db2c34ea45cef4f06ca9e878bdf8b114d8ff80c0771db19ea675643895367b8486830796c5db8e2b650d14d3e0ce3e1

    Download Submit