Overview

overview

3

Static

static

3

1f272e3faf...4c.pdf

windows7-x64

1

1f272e3faf...4c.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 22:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1f272e3fafd6d3ef42a88901923ce64c.pdf

  • Size

    89KB

  • MD5

    1f272e3fafd6d3ef42a88901923ce64c

  • SHA1

    9fbbff71ca9d22f62ecbd1ed301f11e38dceae6f

  • SHA256

    fde2e7daa027ee3ce9b6a1b0f590ebb882d33cb7398de96f86ec1344e2f99a9f

  • SHA512

    1358ab3e3d866f0c669f31ad19539b1d2ac7efccc0d7dfdfa27778fa0f5dfd43901b88a4c018dfcca441295fa94ec37810d6d190609491689a4d0d3e8babea30

  • SSDEEP

    1536:FQg7NhpzltrS6S78yuvnWkdMbig1Eqxy5DVtM54WypOlWWxkfIulqzLfoym:ag7NzPrSYyD4ujEqU1VtM55lDkfIulA6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1f272e3fafd6d3ef42a88901923ce64c.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    d380d1ce3050238c0d7c89d91259dad2

    SHA1

    c73e853486a3929dccc666d79abb23c0aec7cad5

    SHA256

    e359c60f7732b4a9da18cf42e52b14d8d65abd5c85e6fbe5db61293edbae9ce1

    SHA512

    20e253d027be239566b7b0790f055edb348417ad8a504c09d3e720b9ea84ad12e555533c535f006bcb99d9f98df909fcfc380714f3f4d6ab2cdfee1e2486198e

    Download Submit