Overview

overview

3

Static

static

3

11aff17a1c...21.pdf

windows7-x64

1

11aff17a1c...21.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    11aff17a1caae58f6a1041a94e074121.pdf

  • Size

    85KB

  • MD5

    11aff17a1caae58f6a1041a94e074121

  • SHA1

    91ab6adb3d421d5238099e099e692280dc3f9072

  • SHA256

    a5f2361317a5f3a5e8abfab0c45cb1f69e2aeb9b21cd0e331381358ac96d035a

  • SHA512

    cf1d4c92915d8a1ff60f31276e5c592ca112567c4702ecc3e37644da778b4eac0cd60d09e39a56396b0b5c4db0bcfaee84c8f5cb300539f5fdc0683c8c588bae

  • SSDEEP

    1536:bYmkkDKyHTpV4ewQbEQBblm1UpYypuMeZmbCL61WkNpOPJxkayiNW+c82K6/:UfgKyL4D+Egblm5vt7PJWVif2l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\11aff17a1caae58f6a1041a94e074121.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dbf5c42c550d1271440b09953578170c

    SHA1

    517668b5fc805b865bcae1a5c78d9cd98c753607

    SHA256

    c5e901fffb2115a255bda28c9c11a84c55b0b7e0e0e871d1baf359ecd7f9ba12

    SHA512

    98ba50745b3e5e5d684f70a0990a240aa0bec1306bfbc4016c381c90451c3a6c4321fcf47719958239fcc021ed2e38ed7d160dc0d07cdf6c46094ecb0e1d2e0f

    Download Submit