Overview

overview

6

Static

static

6

25aef17993...1f.pdf

windows7-x64

1

25aef17993...1f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 14:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25aef17993929474de8f237198d9671f.pdf

  • Size

    31KB

  • MD5

    25aef17993929474de8f237198d9671f

  • SHA1

    5bf09d5291a61f5ccb81b17fbc5f9e1a70b9955e

  • SHA256

    7e175316c3145b406899d86eb6219e900d159b4c28cde9dbb54feb4b6f62d7e2

  • SHA512

    8d5b5f6a8432dc18688256b9b8089220c7549465a398d2c05cd3402d2b1a17a91988382fb1a6ff34a281881594dfd25d016fedf74d1b3389829ed1260c811c7b

  • SSDEEP

    768:tgGzpDCBzDwdlofW25/ZVkc+skKoq+blvqykc:OGF2BtJ/ZVkc+skw+b1qykc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25aef17993929474de8f237198d9671f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    b7cc54107b05f5de704d1db5cfc8e0cb

    SHA1

    973e0180d33aade8a15afe782dd97bcb38e3211a

    SHA256

    0e634845a6c93076dd74812d3df3d2b18dc74e6a9f5962f6758f5ef73e8db4e5

    SHA512

    3105f5d5137f37897307fb509cfc5e742bb3017009c2a142b0a8b65bcbe78a4554b077c3d37276d683bef31f33911202e7e09a1618f366a6a18b3237a4e56ebe

    Download Submit