Overview

overview

3

Static

static

3

17945dbc7d...28.pdf

windows7-x64

1

17945dbc7d...28.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 10:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17945dbc7deadd2c928e70921ae8f128.pdf

  • Size

    168KB

  • MD5

    17945dbc7deadd2c928e70921ae8f128

  • SHA1

    53d3dabdf876e92e8da412dfc540b522cc48c175

  • SHA256

    8d88c5997186cbf79f110011ffa69e2867efd2cb43cca3d4acff07b67cd1f17a

  • SHA512

    c44ade8dd246bebd815e52beb9a61d5d3bbde316c0a55df1481f3433b76b6e5d880fd1cbf61cbccced733374105c9f4a84edf28a21380576265b0863056f1b03

  • SSDEEP

    3072:C+1n6fcRn7Acu4IgaHW46uGxxM5Jt2e26SqaKicvv2zBpD0H8hQxjboIELHmwlaI:Hp6kRE94La25JxM5XHSZtwuzAbxRK

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\17945dbc7deadd2c928e70921ae8f128.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2376

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2022ba0ce240be7e06a630c19769a2ac

    SHA1

    c04e757eb15b35f5057340873efba3eeb2053cb9

    SHA256

    58210a0943b78abd9612668283df37db9e1472d7e879b87342b973f4965db8cf

    SHA512

    1421ba7c2d8f053fed77e786c88b878f1a5b5cb5ab3bcd5e5f8f01a65086cd7abe479ba94c14461e995f598202570d0a0f1d85d9cd5fe3eccbd7bea05170085a

    Download Submit