Overview

overview

3

Static

static

3

1b87e05c21...6f.pdf

windows7-x64

1

1b87e05c21...6f.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 14:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b87e05c2139f49082867d7dd365ee6f.pdf

  • Size

    89KB

  • MD5

    1b87e05c2139f49082867d7dd365ee6f

  • SHA1

    1861b4194a18770cb1d762dffc8c5ec68c328b52

  • SHA256

    1ba2ae13256e71108585d8b27eb4c646d6e620a3d4498c9a95864349cd4a5d96

  • SHA512

    4eccadeb16283f4b053da98fff349e31fa29e1636db21e2c16be67faabde535fe93d71ce4e1b2ad1112f47bc96d4b13af68652758a21f2937b0e00df09c4c907

  • SSDEEP

    1536:Z4WjHz/XfezMdu4uh1cr+n8LVI4+E4U86+S6wMnCxDvUbWrNIZThw1WapOtQKuM:djHjGzb10RI/Exz+S6XCxzUyIgqtQY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1b87e05c2139f49082867d7dd365ee6f.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1588

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    45f6251c9852d3bbe26c64349e1a0b44

    SHA1

    38e7a3eedb4bfcce607b8eb42cf1aa549cf1e017

    SHA256

    5fc58b60da7ef812504d32b1348c6309bcc85e212fc43be513ff0272872ba832

    SHA512

    8934a294931de215ea1a073f6a3dafeec722b4e5531035200136a22add2cbb67737675d4e3602d85210095a51af24e902eb8460193ddd89024474965c4fc0b86

    Download Submit