Overview

overview

3

Static

static

3

1632bed779...e0.pdf

windows7-x64

1

1632bed779...e0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    125s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    24-12-2023 22:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1632bed779a063ed3b2adc704d2a28e0.pdf

  • Size

    84KB

  • MD5

    1632bed779a063ed3b2adc704d2a28e0

  • SHA1

    89259aeab6f51be37eea644af1467c48611c747c

  • SHA256

    9a1e80a6f6739ce8735c0e3ffc5b9a65fb634f05d398f012b144fd3bf6cb6e86

  • SHA512

    e3144c7da84ceda6c8f588397c6e0bd4629c91cd193e350eafc7c8b91979e664fef03f85bf3cf13eebc316a41b6ae9f13f8cc96d63d96be4ee4c08b26c05c6dc

  • SSDEEP

    1536:aMf/Vss5mc/+Uqn1Y+Jl2BvoiE/d55Ua/5K6KhWKahq+41WOpOwrmSvsyY+:H1ss0UBoIJSFYaBichq+4ywrjvsK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1632bed779a063ed3b2adc704d2a28e0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1936

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    52a2f65167b5b762873226c112793218

    SHA1

    3873e7ea99d79ec64f86447d5ed44a08870edb7b

    SHA256

    5f2782f8eb7e091a57300057dd0a8cf0e9a94b8934d23b13ecafdb0e0977d287

    SHA512

    106f3db847e3867874584e588b72316e004fb65bd56de10d43d580b369e188381db96b822a140f8bbd24ec5484042691e85cf01030f47d6610ebd56e9c7ccd3e

    Download Submit