Overview

overview

3

Static

static

3

1f2c5be844...5d.pdf

windows7-x64

1

1f2c5be844...5d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 12:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f2c5be8449137847d80623fcdf8365d.pdf

  • Size

    73KB

  • MD5

    1f2c5be8449137847d80623fcdf8365d

  • SHA1

    3465a866dc2b4bf8307745167ec8d5c082f0ef06

  • SHA256

    fd778d822e52350607537ae27c40941c453a8ff62d5f353a87650130b1fc0767

  • SHA512

    b1ce5fcfb1fb76932c878b52d0f0d35583fae8d9e63b7a8b7fa31d0e65e5f6a104faee386fbf50b5a89f052be5586eb5266f31a88c7f5dbceea8c68730c43a6c

  • SSDEEP

    1536:t9g6gogzMLhnzBMS8sI/diQ8AcVkWYpO2+Wagzc2RBj3dlyFbT:yogoLhn2IbA+72872RBjtlyN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f2c5be8449137847d80623fcdf8365d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bf173dc3229da739e74a63e91bccf8ed

    SHA1

    57b41cd8f6a58b48ff0f4153e0b2100d85c66880

    SHA256

    5baa8f9bc56434e00dada744de63cd57dbbced4d44258911d90db7f1e7e68e05

    SHA512

    a875efa43f50e008c332d7b094b6997ae9659e03a324b428ebf4c7f1968a097b5aadaeac0e7a0e26f0a8d99c429021aa66072039b992edb8f2632de43bb9e2f3

    Download Submit