Overview

overview

3

Static

static

3

17e805a6aa...38.pdf

windows7-x64

1

17e805a6aa...38.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    132s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 12:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    17e805a6aa849921aa43be98561d1d38.pdf

  • Size

    42KB

  • MD5

    17e805a6aa849921aa43be98561d1d38

  • SHA1

    5d7f3ab1e375f40003de781e2ca258e30c0096e1

  • SHA256

    cf240d13928b30dc7ab3e6e6198d8627673d90937f7d1c82ce2b6c6b11b7e83b

  • SHA512

    b136c5be4fafe195d93ff6378333ef3678aaf2e1a3a6038b4d28125e7086ccea09ffd4596a32ddd30623f11af490238829a9b7bf4b5c80d1577624025b3af710

  • SSDEEP

    768:W7MKcOK/8IlsE6Oqn/6SavBIJxFs8IAXb7KvJks0kUymJRiw:W3cOK5otE8NXnKvJksyiw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\17e805a6aa849921aa43be98561d1d38.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1768

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    21a23e2b3a651f42c4004158bed6be42

    SHA1

    b5eabaca79f7f9bb21e3470e18395292db66c145

    SHA256

    44f2a9dd6fc06278b814c4771f1256df7098f4320a67703bf0c41cefa68d90ab

    SHA512

    b2d140a53d8b6800ad9defda73836dbafae0f8fb6f5646ec260cbfdb0a289a0aed0c17f0b6ea96dcb6a65945a9d572210b10d57e9ae9e88eaefa0e224e4da72c

    Download Submit