Overview

overview

3

Static

static

3

17d98e5d44...f7.pdf

windows7-x64

1

17d98e5d44...f7.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    146s
  • max time network
    138s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 12:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17d98e5d444916dff725d9261b510bf7.pdf

  • Size

    72KB

  • MD5

    17d98e5d444916dff725d9261b510bf7

  • SHA1

    1b8efc0c6983494a959327a3aab54dac9ffbe15f

  • SHA256

    6cbccf8e272820b0f671cc5c4e9d01ed9155387049c23c73cdd8392c9fb21c07

  • SHA512

    5e2515e4151ee8cd1ce058cb06d5b0625e09a2a6e6b72b0f9805c24ff491659f8a53bb12ddcd0bc855434eaf5a778b40c08d1ae89583a3e89cacdfca21020c5d

  • SSDEEP

    1536:Bt5LvrSHZeWZfD8+4FadWOkdPkjk7hloHghB8mwGmvoR4Kg/MU6ig:7AP4DaedikwAkmwjvI9UM/

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\17d98e5d444916dff725d9261b510bf7.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1fb40a6cf4c647f70db62a6b85105347

    SHA1

    becc6249d57d9ee346a2e179c5afa913c02a1002

    SHA256

    58413bf1667c178af7a6bfa927100480e76b0b998c6edc11030f1f56f7ccb4e0

    SHA512

    1430a3fd413a40c91103f477cfc2a4ef4044c0b3a67b03842468c55a2285d547e2383b73bbf38ca7f48c48be0e555b0cd8f6ec0b1fd624d0a7db9d45ca0fa3b9

    Download Submit