Overview

overview

3

Static

static

3

1fa75246bb...78.pdf

windows7-x64

1

1fa75246bb...78.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 23:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1fa75246bb3d80ff003bee4e5c4edb78.pdf

  • Size

    35KB

  • MD5

    1fa75246bb3d80ff003bee4e5c4edb78

  • SHA1

    aaf85db0966eba350e417dc73329c42566e9bd5c

  • SHA256

    1e726a9ecab035f3ff294131caf544c259f0c0178e393069b0f96a82b0b51955

  • SHA512

    30808f119a8d0a736a5d7321a02b858c8e25caa0dbc7b2ec738ce4557e3399496eccaf938348510dda95156324e3b99521b9c65a6cca6b599ac74f5c2fc5973e

  • SSDEEP

    768:eAOTzdThATgGDs35E4QUavSMzGQV9D6eVZ/qWMFQhD:ejzjG+24QULMzhDF3/qWMChD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1fa75246bb3d80ff003bee4e5c4edb78.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1ee4f834970f769eb975970ad7205649

    SHA1

    a5f012247df9cd22a54720ebb0a208398b561d0c

    SHA256

    ea298152540f926565edf45b452b479e83b3797af035e12b93b7f76028d3b556

    SHA512

    3f1fb60c443e01de712d05bc9a981b55e932d2e9442c2f7bb53920ff7e5ff75291de6af70cc2a3a0a7d2a17e5a6d464f5ee2308b9a6a2bdb7ed63153d2af4239

    Download Submit