Overview

overview

3

Static

static

3

18bc4b28c5...ab.pdf

windows7-x64

1

18bc4b28c5...ab.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    130s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 12:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    18bc4b28c5d306bd067e483f9d659cab.pdf

  • Size

    86KB

  • MD5

    18bc4b28c5d306bd067e483f9d659cab

  • SHA1

    0ec8fbd75cdf363ea7f793a9a631e6f1679d677b

  • SHA256

    b60770317d236d55a083e09aaf5160b5b0517ac6ea1ef0cff9dfb05d37d44dd8

  • SHA512

    304ee6bae35af96e24c25a1cb4c2e8736eb25b33d5005b5376aaf72d5b75061803845bef111bcace71e43473dbdc2e7653018a48bcc1efa697d308b1a98f3d2f

  • SSDEEP

    1536:6EMCmzZbkVApLa9IIggtDGmIuZjLpuUQvrscLQ+d7bB7fzyVTWCtWcNypdSezhPD:vtmFbkl9jaNuZjQUQvg1+hB7LydsdSyF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\18bc4b28c5d306bd067e483f9d659cab.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    07ba529537a5b4e17a86ef3d97c56182

    SHA1

    e65e8783c9e9e8fd1a7da763c8b498b7ecf7c1a7

    SHA256

    ba8b70d9ed93d604e4a09fde35be551069669f293f68eabd41658a71df26eb5d

    SHA512

    1af3140da824f465ec440bc1ba23bb154213a5237572da16386e09bbd9d5f3888ae4104013cce6ed9db78f5d0833ebb12aff51688c55163f5750d847fe68bd3e

    Download Submit