Overview

overview

3

Static

static

3

043a98d40f...d2.pdf

windows7-x64

1

043a98d40f...d2.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    29-12-2023 21:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    043a98d40f3a98315028790ce6ed96d2.pdf

  • Size

    42KB

  • MD5

    043a98d40f3a98315028790ce6ed96d2

  • SHA1

    15f954165c739810632423fcb1483516b0f4a7c0

  • SHA256

    3e9253c3295ae0b57466809810fcc45fdd822bf7da9a0329f0ea5b2798d0637e

  • SHA512

    d6d1b1280166ee932feb054f7d01fa4cd34dd9a018a6aa967b861ce7255c9a1b1334b21a20062217910dd4bc9c21f45900507a25950006ac408fb6ec62353e19

  • SSDEEP

    768:tuB/OlLd9hdj6nGqWRnXZHhbZEkks0vJjgKgjoi4LVoEMs9:tuBmxd9SgZFks6VgjoJLVnJ9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\043a98d40f3a98315028790ce6ed96d2.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1932

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a109fd3a2c48cb6187227f7ee622dc17

    SHA1

    1cb6e03ef83f2467774486a4725165f8df1afea9

    SHA256

    52b838d480b19f417f67cb513506f8dda974cca2b7edec8f76fc954f9c73c748

    SHA512

    94fc1b641b2457404574eb962ba831566c4a42690981b17f380993171863216bbe5f89c34592de261be22068bfde29918e60d0dd041989faabef3538678dd2dc

    Download Submit