Overview

overview

3

Static

static

3

1fb8a13362...d0.pdf

windows7-x64

1

1fb8a13362...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 23:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1fb8a133628ab6f91845531036ee11d0.pdf

  • Size

    84KB

  • MD5

    1fb8a133628ab6f91845531036ee11d0

  • SHA1

    d059e865a03c1523dc3566b6334a089422a74fd9

  • SHA256

    997f8f54a2549fc146920053d424135e1c43ead83fc5ec65a5f05dca97f37370

  • SHA512

    80557306ec5d85d87d494d82279e158e6db3076fd94ae5897b07bcdf38c5610deafdc89c04c3e63ea925b60f8b7cfbc4f3afeb5553116bbfc27eae8ba7ee813b

  • SSDEEP

    1536:c8g1i2mR3nmIQrLSft+shheFKfZ5C3sYkZpmJsW1RlOU7/mqhRYW6pOu2bTkfILC:dgHc39SSftthecfqNBRl//17hu2bTkff

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1fb8a133628ab6f91845531036ee11d0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2220

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d154357fd09335564ffe351f713d9301

    SHA1

    c464d919c902148f8c666f5c6a6ee1828153c6d6

    SHA256

    00da4448d255fb6882bfe6a3a46f7e4e35c17c14de1ca2654083165f53a59c2a

    SHA512

    6aad1f1f86996dd681e818c55e48ff1cccbc513c09a6dc3ab77d6f895ef41f274b53987e57cc2f97a389d6031c56ec6ad6816570658f4092ccf4ad92dcacb22b

    Download Submit