Overview

overview

3

Static

static

3

19025b1351...00.pdf

windows7-x64

1

19025b1351...00.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    196s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 12:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19025b1351961d1c2666daf568422900.pdf

  • Size

    83KB

  • MD5

    19025b1351961d1c2666daf568422900

  • SHA1

    c3312c89ba2417950842cfdf0732eddfee836f8b

  • SHA256

    3ca27e7912a30f46d27cf46b701bb200504de0cf3d390110db50b4203fe8e279

  • SHA512

    e4352be22c04ac0670a6102627e7fd961647421890e52955ac8ec8cb6f152d32391c47fc677efd9e144ed46559fe3057f3db7aeb49e50e8663e3cd9ec82bb417

  • SSDEEP

    1536:Vbb18kCQLnuKDi05FnzdKvgc8uVen0/JtWGpOKCW7lLYphiGXnRvifp:h1EQLnur+npKv18uVnoKBlL6/Rv4

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19025b1351961d1c2666daf568422900.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2620

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    11d9d4588e6529e4a7e88c7d50bd2283

    SHA1

    daa4f9dae26017c5b5c66f12a6c9a08bafcacff8

    SHA256

    972e8f58d3cd549a9ba0d50d34cc579630ab6026cf4ad15efc2dcd915db24ace

    SHA512

    1ee0616caebedaa88e59f82d3d3f26fdc28929d5beb12b03e1ffc9b6482d960a072c7e3b57ad4b4eab28930a5c197877a426c1a211f3d77521225dd43c7e0058

    Download Submit