Overview

overview

3

Static

static

3

1b66547a2d...97.pdf

windows7-x64

1

1b66547a2d...97.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    139s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 14:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b66547a2d688c100b2ab916c8c15a97.pdf

  • Size

    47KB

  • MD5

    1b66547a2d688c100b2ab916c8c15a97

  • SHA1

    69407deb69bb88b8c175df42862a51d5c6278a06

  • SHA256

    e13fb6831d1aded02453cfe103ff7d3d304c3093cdf7bc0e2a1c828092d13e05

  • SHA512

    4030909366a17f0aa32da0b52ff8462ff2a1bafe4d23bb73dfbceac0e909b195b39a4293bc8b0f7495a8f9f7168239d2cb1a48345d006928289e39fa43bb6e60

  • SSDEEP

    768:c/T1bZkCsSAwuxGHQ0vGogfiz5R52HqlcsYqJuY96O08rT8cqKnDuORjS+cQSQu:c/ZbFsCmGHQQ1nzZcFgd0KT8MCwjS+Du

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1b66547a2d688c100b2ab916c8c15a97.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:108

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0af00e4752a7bb56becdc264b2aa5c2c

    SHA1

    5c17d4b0be4e11ed65f21b139d15c8d35c121853

    SHA256

    97a06ecaa10c3ad877eab2e97a26d8713b5de8bdfd7eb27555eb7971abe834b1

    SHA512

    869cfe9693c1333c2cb19676216163510d591f4dafc9eb78f66b52b4ce7f44a03914b6d26f6146b303d2f4bcd028ca1929ef25e9e17b906df3e544ebde5617d1

    Download Submit