Overview

overview

3

Static

static

3

fbd5b70948...e3.pdf

windows7-x64

1

fbd5b70948...e3.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 17:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fbd5b709481f09905e3c8d134dd228e3.pdf

  • Size

    121KB

  • MD5

    fbd5b709481f09905e3c8d134dd228e3

  • SHA1

    dea0ef03bc724c86b8e1488a80ba5ceecdff1414

  • SHA256

    ccd4ba0e0e56ceef41c85fb4fdfe40b24b53a4db69ed4f1d2d82e170c4129db6

  • SHA512

    d78938793f70ea1fb0309a56d8a9029fac129554ac73a1e1b5f5cea37b596ef6b5ba50281034083e6fb099baa79658499806482a3b9e3857beb88f26b1a83800

  • SSDEEP

    1536:ybhUSAWFofgWD0UDf9200ZGAJmY/cZuniupuPYaTPwQVtrtwCmJNQxsqH0M7QNn3:/+OYG9f9x0ZGQ/z5uglASn5M7QN+5G

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\fbd5b709481f09905e3c8d134dd228e3.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0781d53b54cb2cb6fdcf2095e553e51c

    SHA1

    c2800e915b682714f46ded0d5103d33c17d135c1

    SHA256

    3beb5dd5ad6018a0fabab2d8efd756da623b7c920f4fb183f0b87fe330a3db93

    SHA512

    2b73d97615e4579f4b21fd6d3c3bdf893bb5fda8d3eb18b7275048a8715e593e8c690131109f7d4c8539726ff6a48fe72af3616b56c0514d49f21de9ccb97b38

    Download Submit