Overview

overview

3

Static

static

3

1e8ff379e4...37.pdf

windows7-x64

1

1e8ff379e4...37.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 22:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e8ff379e4b15a2471f11d9016b0b637.pdf

  • Size

    84KB

  • MD5

    1e8ff379e4b15a2471f11d9016b0b637

  • SHA1

    a039c48810c0a0b5f8f4dcc7c86aed158e10d117

  • SHA256

    ade33151a57b448d5f8259f3f0d1b54c3de7169348527b5ef72548413e741da3

  • SHA512

    dceb18b3d12ec4ef111db87cd09a60544d9f72ca0a85f174b109b86e88d0d472e0c8a9a426d40ca892583ff4a9c8505d6351331407b591f5955f73d168c09e28

  • SSDEEP

    1536:KWZgFLdQeKcXGX5WYq9nlR0WNkm5n8oNyA4FcXk6YWcdBQaPpr2FWspORJOx:gZel5O9lR0MfnNykmdBQaRr2MR2

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1e8ff379e4b15a2471f11d9016b0b637.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    85eb3c33c4537c1df33d087fcf675d6a

    SHA1

    6a8084986ec0e1f26c3332ee7ed294b7f9399ccb

    SHA256

    c77ea539cd95b106755889206ea5f42bf229782fd7e713b4f0585c630d5549ab

    SHA512

    6388a2a04aee71bf31c63fba7d8d508afd529eb225ff948c16adbd48514af6b33e1b90dee6a3a4d287a837a11c1cf71b3972f31e023085545aab8847607a0401

    Download Submit