Overview

overview

3

Static

static

3

178887b38f...75.pdf

windows7-x64

1

178887b38f...75.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    213s
  • max time network
    162s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 11:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    178887b38f1bafb75752af29f0f35b75.pdf

  • Size

    176KB

  • MD5

    178887b38f1bafb75752af29f0f35b75

  • SHA1

    2608dab80204dd6d14c944b8da77351e98f6385f

  • SHA256

    c81676aeb53c3b1fe1115feab3250e15b098d81cdb704fe79f91ad123c6841f4

  • SHA512

    6138250508fc4b0af0d9a8c6b61bab288247b5983002294b29deb6c9257bea5fa90c8db7aef2912e625b109a1d4b8bd99fb7964a12cf4a4b8f3f0304e30f7f44

  • SSDEEP

    3072:F3COtGVwlSf4Z7MrKD6mus3iYrfVFXFZ5mXSSfPdq3Z2qls7Z:ECGVrUMrwNus3xXdmX3Gls1

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\178887b38f1bafb75752af29f0f35b75.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:952

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a43e8ccb989f02e87b354b67e12d994c

    SHA1

    37038ce5a912a4aba7cd13e6d81b8b6783bb20fc

    SHA256

    50a22d5fd1f31321eb5f18ba16faee75b3260a409cf28f92f968916c9d5495e2

    SHA512

    3e1a77677ae5900c2019b924096f29eb1d8e1b5c810590a15db13bf2bf2c0f75bde454af41585fc024ef16bcdea884be54608c0b6306160b61b7657a08253028

    Download Submit