Overview

overview

3

Static

static

3

18317a22ac...fd.pdf

windows7-x64

1

18317a22ac...fd.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    18317a22ac9e4f3b3a44cb1d7462fbfd.pdf

  • Size

    88KB

  • MD5

    18317a22ac9e4f3b3a44cb1d7462fbfd

  • SHA1

    ad95a4d16bf5c193464ee3073555b27554cce160

  • SHA256

    a01231770af373c876115192886cf6b0eaa5a36d12f5e8ac66f2ec74ede37e2d

  • SHA512

    a7fff294d815481cbe9ed26e6721212064e84a61c4a74946a895db74511e48348de43566e3ecdda389b580dc34a4d5abde5c453f66cf5ce6a96088966c7f24be

  • SSDEEP

    1536:hYj32+qR3BW8Dl+bGrdsqW07jHEqQxvGtkV0pmm4WypOlLXarwWinSrhC49OGEl:uj341c8Dl+bGrcI1qvUCODlLqrl9E9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\18317a22ac9e4f3b3a44cb1d7462fbfd.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2192

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a849c47983c748d1270885c2566fcce3

    SHA1

    223741d8d7e2e12ff5713bf83a02e92cb89afdd9

    SHA256

    2b10b934ad296f554edf6f5e3f947312f2a262ecf38c79ed7dfa427e23855797

    SHA512

    feec9784c334db34ac5605a7496f352f33907792d0a44fb60332476e31cacf2f9ecfb578ebb3d5c1769f96fc4bd347dec4e945410cd47eca1c3ffc36ee67c755

    Download Submit