Overview

overview

3

Static

static

3

13123c5d2e...d7.pdf

windows7-x64

1

13123c5d2e...d7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 08:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13123c5d2e58d49c158f1b63ee3e66d7.pdf

  • Size

    86KB

  • MD5

    13123c5d2e58d49c158f1b63ee3e66d7

  • SHA1

    868579c82e5c683e23e17aa5a69d889ee0fa175d

  • SHA256

    a9fb6e0f12e87f7be2141c592454a31e20d6cb98169abcd72fff973dc1f68438

  • SHA512

    13e57d63f96b1c4161a68ed93bd7e6ebbd72717f1589e267a09d9933283f32a96cfb97defadf34e3a28313585ff23475d0e213fd924f1c6682959ab7fb298ea5

  • SSDEEP

    1536:blyapNn7QnqGX7CW4IpauOY8J/rshkIeD345o3jWypOlLjqPWXnjwezgXnl:pN7QnLdpauYJrshkfDoKclLWAEezg1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\13123c5d2e58d49c158f1b63ee3e66d7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0798e99b88db3e148373303ab42b9a6b

    SHA1

    bacb46fceca6221a0585df4d25d80c2d4d903bd8

    SHA256

    3d472768cc082808632b336e341dc9085c7b3f997167944467127f97ed1c8cac

    SHA512

    ddf75007747885547d66216ac006a4a2de4cbe6fbbb795b3633e0ccbd23d22586fe531717f484db113b4e2783d49a388be3351f7a5f99ed7c00869a33c959869

    Download Submit