Overview

overview

3

Static

static

3

12e48e112f...49.pdf

windows7-x64

1

12e48e112f...49.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    141s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 08:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    12e48e112fc86d8a1ef612a80f0d7049.pdf

  • Size

    90KB

  • MD5

    12e48e112fc86d8a1ef612a80f0d7049

  • SHA1

    b08f0999f0f1b18e5447f1a2f90c42a9cedecd8a

  • SHA256

    85710b7e3699b933dfa7cef4f61df79eadf938685e14882b0007e73efb21a8f8

  • SHA512

    f15828332d038ee156c2db4bf75007484f830514f958b48b171d20bf6624d8c631de134eec5714f73fb2c74028aef0868f8684d28f6252ded9a2be62e17ab135

  • SSDEEP

    1536:loyqXu4Q45giJJM9txSjzZB7KPqEOGlaItkWEWZ1GH/WGpOKCWr7nGiRc46G/RVE:2S8gi7StK7KPqENaItkytK9TZRc46yRS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\12e48e112fc86d8a1ef612a80f0d7049.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2864

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    540c49475d6f285cb4b48c9995a7f692

    SHA1

    467fe7051f9dbc5a78f00e7b41a0066cb49a45ab

    SHA256

    73cdc87cc4b22e70b3f29d159fad68ddace40b28d98400035958df32dad1fca8

    SHA512

    f8ae48ebc4ec2531eb2211582463567f7aa47e168611a51a8d7a5dc2fd9c03745398b1ed3aee471d0c0b77691f9f750aca45f3194e8faa119fe6a561e22b787a

    Download Submit