Overview

overview

3

Static

static

3

112ea70654...fb.pdf

windows7-x64

1

112ea70654...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 06:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    112ea70654b0a465dfcb9245281104fb.pdf

  • Size

    35KB

  • MD5

    112ea70654b0a465dfcb9245281104fb

  • SHA1

    77f41d8ef6bf7a033d59b46ae28aaf74cbc36fa0

  • SHA256

    944f4c894979662f8b3b579538f9d507f86a377c8d19dfe2858fff9277c257bf

  • SHA512

    cc953a94f947a3307ec83791e6ae428b07686bddb6a9ae90ebff67ed62ca3269dbb1b7e8b546117fc2480ba77efc85a7814f633d4f121e180c6be1f16231da4f

  • SSDEEP

    768:TWNuMN2wDlsS5e9dtM8aRUyXPKSIKr3WCxCmPlGn:TOuH8DedtM8CUCK7OPlGn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\112ea70654b0a465dfcb9245281104fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8c47780ce5d2a9065d1fa51e18ed1880

    SHA1

    a3eb5c8df1fcd46871cb822c476d0e5b9f7bdbc6

    SHA256

    41910800fb7ba19ac0fafa86632bba5cf48794c87cc7a7d2e9c5c3ce09e5ee73

    SHA512

    950078dbeafe418a6c79bcc55f4c63fed21254c69a64d5b6b7ca0f20266ae1d440a09ba3a72744b34a57a91fa9b8f48bfdc56e5cffaaa597299ab26145bf5dbd

    Download Submit