Overview

overview

3

Static

static

3

f81b311488...55.pdf

windows7-x64

1

f81b311488...55.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    28/12/2023, 21:04

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f81b311488b696aafce3f4e0c9a2f055.pdf

  • Size

    125KB

  • MD5

    f81b311488b696aafce3f4e0c9a2f055

  • SHA1

    f88fe2e6a9fe9f5c0d37edf2b9011da2e8aea5f1

  • SHA256

    e2848795db29dbae0b2cf4d0a0e15163ea45317b459f670428f2d234568903e0

  • SHA512

    00e5b11ac17bf939b0fa1ea4f02c3803c3bc37e69a79d0675278427fff48530bf117f48bfe1f726d5d62ca22909759c3793dc94664ecaea8bcf0bc186235df29

  • SSDEEP

    3072:vOixdKSj/73bxNoP4CTFnnfqSt4Dqu2uWT2Rwh:v7xMw7LxNoPh5DGDdW2Q

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\f81b311488b696aafce3f4e0c9a2f055.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:952

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          d055ccb16ddaef91f590d20216df839f

          SHA1

          697f82e45851c1c1f75affd1d733480832be2a9b

          SHA256

          0f5cb5cb2f2a158d94d83efcb9c245d035d6bc1daa983303e74b513bc0921b51

          SHA512

          4e457371fb31bfd3c9d6b98768babea55719c61d6f645c7e306ada27b0b619cec5af9e1097a5fb78fe65b800348e714fbbb7efd9b4275ad06b5e486cfbcbd6a3

          Download Submit