Overview

overview

6

Static

static

6

21400a014b...f5.pdf

windows7-x64

1

21400a014b...f5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 13:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    21400a014bb841069cb0cacc85bdccf5.pdf

  • Size

    41KB

  • MD5

    21400a014bb841069cb0cacc85bdccf5

  • SHA1

    aafe7ae01a0cde311cc13d520bfc445b31295911

  • SHA256

    17064d58be8f1bcf458a9350c1ed1f9051280ae627336c948e574c7a9bab6f37

  • SHA512

    78a4633a29f893f80b9adce53ceee9d2d46821a50155333048595e143c58baaff301b37112ca83f631336efcd81cd55636bb3d463cf151c326ccb1c40386face

  • SSDEEP

    768:QgC4KSk8f8LO6EuOWTV4ai2qHDB5KgGv9WtDYG37vre3pox3/5GN6gfkYgw1qvww:Qgvl8q7yZ4pHDAmrrh5GC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\21400a014bb841069cb0cacc85bdccf5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2b4a1b8153f2cd1569401f9a4f7e7a56

    SHA1

    8cdfb4ca109afc122cfd436df139ec49d6fc7f4c

    SHA256

    341b3a4e8b7380a5cea67936635a174bf0938b42c26323c7400550fecfb55884

    SHA512

    dca3eb23d412283711053792cf871279bc0998619d8f8ad99e50aa7a3d0a797b5b051d0e143b57ee03589133bf8120be11588f15235fd2ef0dd5692c999a1249

    Download Submit