Overview

overview

3

Static

static

3

1ff3296796...65.pdf

windows7-x64

1

1ff3296796...65.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 12:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ff3296796ec07a04d9ccfbface5aa65.pdf

  • Size

    84KB

  • MD5

    1ff3296796ec07a04d9ccfbface5aa65

  • SHA1

    a4fc201da96dd4574415ba0ede706fa951e0a104

  • SHA256

    b5e651946f5c00725a4eb46933b7bca3e39335cf2f07ca9782f22ef9e7e03375

  • SHA512

    07bd849558d8a198e0befa9638a847f9d167201eb8907d0994dfd1e63b939de8ece7d98655008f678bd8c7f3f5b4f05828f5ceb43e7b6484e4e70701156d6781

  • SSDEEP

    1536:Cyu14XZ7z7DIj5BkP7/G9beUO0C1LWk9HZzt+K3WOpOaZEWTGDdTfX594J:8C5m52AbeUOd1LNHZJ+KIaZvGBfp4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ff3296796ec07a04d9ccfbface5aa65.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0543191bfbb3f6d6d6b4155eca548f9e

    SHA1

    6e991cb604563adb2c6db16d2dfbf9d073750b78

    SHA256

    f62af3a5a08324f1d17678f2f64e3a89be7d9f590fa472dbcf5df60d3b33c77c

    SHA512

    d4a49620d47f5977a8a6e2022753b085685d506b11a201b106047c12d185b11707f85e9a20a19fc590cbc5d921aa3ebe11595aa686e7f2b1f2e837d17d1f7ee9

    Download Submit