Overview

overview

3

Static

static

3

19513ebd74...74.pdf

windows7-x64

1

19513ebd74...74.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 13:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19513ebd74698a1fb62c681d24735074.pdf

  • Size

    450KB

  • MD5

    19513ebd74698a1fb62c681d24735074

  • SHA1

    d71a72fd534bc47eeaa74a5af07fc3205f7d6528

  • SHA256

    dbdff80f568189b60f1078aac66db1e7296aefb9e2a474adaa1d94dcfd1e6287

  • SHA512

    ab65f675c870de529e643037d038f45654672f4880a56a162b8dd3056bab46f05a54bbc49b7fa9c68b81ec73ea5be584821d48d078116b2ec64fd327046ca10a

  • SSDEEP

    12288:IoTiKN+SnBsVIaIk6Vc1DTrJVITqhllzr0MLfK2W+TMn:TTbN+fHBeQrJTldr0MLfzW+Y

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19513ebd74698a1fb62c681d24735074.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    8f9415ed2714c3fa9e87929df09298ce

    SHA1

    5fd913887229a91f713209e8c21d9312e6316b94

    SHA256

    542af6ff2e0f9abd2c9286084a9d6647ff5d16575c06e1858a1a94d28d307e1b

    SHA512

    b9b74b6fb16456605c69a6923c32d8adcb9ecf9ee88851a47e7b824299bf4595d83a3a512e6e956474ee45b983396d21ff4bf79cfeef8150300cc5a166895cb7

    Download Submit