Overview

overview

3

Static

static

3

064bb98f71...45.pdf

windows7-x64

1

064bb98f71...45.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    117s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 22:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    064bb98f71bcde3d599d6f78698e8d45.pdf

  • Size

    76KB

  • MD5

    064bb98f71bcde3d599d6f78698e8d45

  • SHA1

    53e6cbf13e8fb93ba160d6f3975ed727b73a894e

  • SHA256

    23ca43d07f539de411bde0dd97ae348819038f47b19e332d98b09acd03d5a7c1

  • SHA512

    a3d9fd06d351898953deaac2fa1cf87571948433b25f70d5280fbc1ccfabb73d7e6cacfca2fb06ff684f96bd142f13256ac7fd3979c30aab65ab1656114ff6a4

  • SSDEEP

    1536:qE/YLjZrtJpJIeyuNS3u5NAcKsq9AfOOZSU+8T02dU+RtMJURDu/Zwa2L:ydVQe0sqek7GW+RoURDT/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\064bb98f71bcde3d599d6f78698e8d45.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    298251a91815f381fa8bc05baa00e56b

    SHA1

    ca9ffee57197fb8d009dc849330ac51c41aa80db

    SHA256

    1abd1b9cbb62461b305e90eefb6c5837c21c11d2a2702a01cb3b303b8f4595e3

    SHA512

    5f8d9fe9e2b23bd2074c53dfac0277aca9d0c898e4391302630dd1be417e01157d4b1d7c81564fc21414fa886b2f9cb41eb14a1fb2cf6a5ecb14637dda70c2cd

    Download Submit