Overview

overview

3

Static

static

3

11908df879...d6.pdf

windows7-x64

1

11908df879...d6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    123s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 06:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11908df879268f4f9a3f3205ccebf9d6.pdf

  • Size

    81KB

  • MD5

    11908df879268f4f9a3f3205ccebf9d6

  • SHA1

    dac96cd4902a071f62598b75fd1fecb48f3516de

  • SHA256

    821e5ebbab4b4b84b0a092e6b6d56373e5b43120dac3aa2e65245d1d7af1ff45

  • SHA512

    9697b24b9b0e78eabbc8a68e9c3d8a4f0bf4fdafeb94a7d622e29720628fdecf14d2741b4cb2e17f9126c665f50f21e9c9e7e732cb730913af1c07556d2142e6

  • SSDEEP

    1536:73+KZNI3k2JjFZREsDqZD05Zo4Htuho943+vt0idS4pOJzCcfRKThg5gYng+:D+yAjDGsu505RwG43c0ijez7KTq5Ph

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\11908df879268f4f9a3f3205ccebf9d6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2732

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e1b28ff883489df1351c4a73e83fece2

    SHA1

    2ee72595c68fa8fba1ea6f58ee37ec91cdd0203d

    SHA256

    8598a8413949b9688951a856166e42b9202bc6f1ea280691db3406ffe00baf48

    SHA512

    da7dd1913c74439886d5bb64ed42d2d0d1a8b0b50f0f7bc26ad41bfddb704dbe3f0725fe36458b8416e275ecdbb0e40ce92b0d068544d50510b01312b361f18e

    Download Submit