Overview

overview

3

Static

static

3

36bb44751d...5e.pdf

windows7-x64

1

36bb44751d...5e.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    25-12-2023 19:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36bb44751ddb103c20c102bb0b3cb45e.pdf

  • Size

    85KB

  • MD5

    36bb44751ddb103c20c102bb0b3cb45e

  • SHA1

    55d5d9341324c0207d9e03c649d606612a42c994

  • SHA256

    d120c8ec3d3c1a0b57a8baac972345309808f60a48bf5f9f58259081feeee6a9

  • SHA512

    9333732cb24d73f2b355893fd88e4819f9e7455440caffa632c18eda9f37b458450d33e74cda2b03068bc20dbb75e6767e672d4dd97d259fa8149f71f2ee1c6c

  • SSDEEP

    1536:m5XTPYK4kvojJPKw2HZNVN9vV29O9hmCGNnwZaQAyWuP9Wh5nLb4HRqq7CJWfWsF:MYKFvcJPKwIvA9O9he6ahyhSLMqq7eWH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36bb44751ddb103c20c102bb0b3cb45e.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2656

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0116a7c2dd575be35ab941a0ae07276b

    SHA1

    475790a71b1a71a0bb880ca0b8199742a8ebf9fd

    SHA256

    68ee449c5003ee8482af1f310a37f8a70de570c93eebef8ef6b228317617c980

    SHA512

    3c9e6c2eda249974384b35a2d6c065620b5aebd900191702c937356fdd3a3d361ab10be5fbe8aa38a22f5a7438cc3533ce677b582ab39597173d40a364c544f4

    Download Submit