Overview

overview

3

Static

static

3

2b96a78f9f...fb.pdf

windows7-x64

1

2b96a78f9f...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 16:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b96a78f9f69b5556eac4d9c18e0c1fb.pdf

  • Size

    115KB

  • MD5

    2b96a78f9f69b5556eac4d9c18e0c1fb

  • SHA1

    1e4ab660582f0ee285f68a6dc517564f2ca853d7

  • SHA256

    ded85e0291f5a1897bc14db6d3314248f8236b7eaf7afca95b27aea79f3a9eba

  • SHA512

    9218f8fc487e896e99bf2dcd57c438f2de6da84c027d3f5782bf6bf57c947fabc38445efe878681a6b9b1c2d349152b631e1903f15eed56d224dbe27eab1fd56

  • SSDEEP

    3072:7ym6wTIzjd5icEOdChc4kiofp9ymOTzh2l2mKa3PS16z7ksFU:+nzjnbEdcAoE/Qga3kv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b96a78f9f69b5556eac4d9c18e0c1fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    2578ed1acbca92f73c5ab4ce02ffa0bd

    SHA1

    24b780de2aea029a219b7a1d7490a27cf5cdd25a

    SHA256

    019b43887160bb3414de84950c61c9862d03e2cfd302d73a5a4f7e4de9d77b8d

    SHA512

    8bf226e09c315a5a66a33f556c407fd0fc073ffc5bdbbfa58297bb20277cc6e00242e979be4ceff3694e64c9b56a88b309eec8c0329fc8072e251683ee92cfae

    Download Submit