Overview

overview

6

Static

static

6

3baf0aab1b...da.pdf

windows7-x64

1

3baf0aab1b...da.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    25/12/2023, 20:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3baf0aab1bd3696488d46002a9922bda.pdf

  • Size

    73KB

  • MD5

    3baf0aab1bd3696488d46002a9922bda

  • SHA1

    f17dd358e437e6b6dbf8d35e73b6a2112c117aa5

  • SHA256

    fc64178bc3e78083d0375d36d87b433945cf8c2ac4b5996c80cfede928aefdd6

  • SHA512

    e8a171a00b7f0f46ee2ea37421f9073e3f428daea81af30c9f0553b1802960a1d68494e30fda35914cdd3c21cf9ef4955434878a7910632c68df79e390bae667

  • SSDEEP

    1536:A0Rqo5KQ/nuixsYoT0Z46mjlKmjIylwPC3l1wEDDNXWKS:6o5KQ/uJYo16mpKIwPC3l1rXFWKS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3baf0aab1bd3696488d46002a9922bda.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2664

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    247af00598cd032abaf1ded0194a1f30

    SHA1

    ea82a3b56ebf755c2f1346a665a6766bda6a07e2

    SHA256

    00e2ec406e495af469fba042c3359ac5d430ff4d6ba264b51167e3cdb7834007

    SHA512

    aa7b3ad8b4200094336a4f77d70ca74f5af81e98f64b9489df47fdd5ecc90d69ba41d881eb7d4ccdfc22a87ed8c91c50e8f8f69b1398e7bdf5ef898eab957989

    Download Submit