Overview

overview

3

Static

static

3

12a756fbd4...f6.pdf

windows7-x64

1

12a756fbd4...f6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    137s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 07:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    12a756fbd488333e3c898f1b5300c5f6.pdf

  • Size

    35KB

  • MD5

    12a756fbd488333e3c898f1b5300c5f6

  • SHA1

    bf02bc8581536753fd7ee9f40f64da7740ca14a0

  • SHA256

    e7705b500bd81117690f1ae72dc69b87dffab058c5b119a0af316a5cf68a9581

  • SHA512

    3f3a46d632c05a37f73394c95f94d25b57fda25c967e9e292f8eb980c710f9cca0ba780baf12c62fbc604fcca941aea2b197d30b218993c5e4ba4838fda60da9

  • SSDEEP

    768:JgGzpDkp/owX6Xzv/rYK2JhxmG4o/Y3rBe13pj+8v9wpRdOlhCW77v:qGFYp/yKh0To/Y7Bc3Iw9YOLCW77v

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\12a756fbd488333e3c898f1b5300c5f6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a7ac6a4156fbfe8352801f671944e04f

    SHA1

    22e5d305ffb799610bb89a77dfb00fd16bdc5069

    SHA256

    0df8f9bc1feb89f2d9bf39fb6448d73d87ff8c3e69252dba598be1624128060b

    SHA512

    f108e5f65261dc52a566ae4cc24722ceca10fe7f8f1c8f26d22514e4af6f028185f29626d97dfee202b2afee83c2192a052b097acb5deb90ea6a2613ae1f0528

    Download Submit