Overview

overview

3

Static

static

3

20674f0c6e...48.pdf

windows7-x64

1

20674f0c6e...48.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 23:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20674f0c6e8144d955dda61d861b4d48.pdf

  • Size

    92KB

  • MD5

    20674f0c6e8144d955dda61d861b4d48

  • SHA1

    84648624ebe201d0ab33ddcd4d304c6b0b4fb3da

  • SHA256

    25a96e1707edee4bf9d3a18ad852ddeb2ebb4fad6721070e1a8f7f89567fc617

  • SHA512

    9684d283189f0244ed237477a350d5824a7e28400ae20f4f69e1bb897b8dd030d571f0435c98db5de330be8c9e1fe9035c3540bffcb62f512cee007495d90177

  • SSDEEP

    1536:w2QMRZTZCVA73/c0Xw42OGrafNoFFavQmUd3WOpOaZEWVKhfdkVE14fv:JbYG3V+OGmKgQmoIaZpKPkC1s

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20674f0c6e8144d955dda61d861b4d48.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2644

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    73efd4703a9e4108b9eaf4c7b753f567

    SHA1

    9b4189c2140445f881fe9f2198ddca0aab92dd1f

    SHA256

    5d2826b08a746b333464458c81d55da57c62f34834fb6784e4cc867876031459

    SHA512

    4223e33b65395e2bd93d767afdbced7b0c236243ed4d893d1450580536919441fc2c999a459fd4c1aa529c10e25b60076821da5a4b8ca5237120c530ea138208

    Download Submit