Overview

overview

3

Static

static

3

004f3f7556...c1.pdf

windows7-x64

1

004f3f7556...c1.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29/12/2023, 18:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    004f3f75565facd18a430f0ea4f851c1.pdf

  • Size

    152KB

  • MD5

    004f3f75565facd18a430f0ea4f851c1

  • SHA1

    493991af24e898af1fce2a59203ae74002fa37c6

  • SHA256

    dd531bf65faec66bbd2c140aa63e3dc2c7db5a093036103e0d6baf955c399dd8

  • SHA512

    77ac7928b45e0a1d96fd87f5fbecb9d071a7b4b83ca3cbdb6f42d168a4d8a81423433ff48eb31b3281271fef7410cf6f71db35b673e95965a6f5f8314d8888ac

  • SSDEEP

    3072:xLA23iN17dWG5/VYRCChIVM9uuWWwurwA+Qs/l9Dvd8yTcSlv726uJ4:hAiiNBdW+Y8Ch59ujJom/vLd/lviG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\004f3f75565facd18a430f0ea4f851c1.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2180

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    843d72e57fb64c02aec3e60781d3fe60

    SHA1

    76ccfddb69bd6d0a9281a1df1b61c33b5df15d54

    SHA256

    719521baad2729ffe8a2810e1dcdb9af2447d045771a7e13f311e89625f3e204

    SHA512

    5806b2510d0a49667266cccca3d9af15e9d1fb2780bf5703f13b5ad976225072ac4a70263664e87a51c9905a81847255ba49096a96105489e3f9f2f4a37dd39f

    Download Submit