Overview

overview

3

Static

static

3

1b4027af1d...fa.pdf

windows7-x64

1

1b4027af1d...fa.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 14:21

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    1b4027af1dad07991047719e0dfef4fa.pdf

  • Size

    99KB

  • MD5

    1b4027af1dad07991047719e0dfef4fa

  • SHA1

    4cb808941d4af601efa11ebbed6cbaae2aec41c9

  • SHA256

    36acb05a2d80fd1c8786334fc196ffa18b867f810429b4822607668612858c00

  • SHA512

    ce95c38901c05cdba70c86e0e2e5ef9212a59d9ca0cbc4bba5a8b8ab2fad55ead8e5d63959cfb5e47ad99d815e47a8017d57c7eb0cc8bf3132930c8e71df9a9e

  • SSDEEP

    3072:Nb+w7Vv/nF/2EJJ73HCD11uRTKMP8tQ+EAt8Z:Nn7VnnT73iD18Jw7tu

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1b4027af1dad07991047719e0dfef4fa.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:3004

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          e65f5c27498c165f9d3f7187187d457a

          SHA1

          c5ff7dea46307f9287f246b93528205935465906

          SHA256

          b9206b3e7ada257b38b04f2fc4e99f7c72d4a967cacae7f6be8f14ad23ca8f5f

          SHA512

          a57ea2bfd07c0f936ec71bc10545f6a1167f478bdc0c123bdf5745e1d8b4e68525de7b34704467853fcd115a004a53491de768ff93fd19fe17343cc2fdb135b7

          Download Submit