Overview

overview

3

Static

static

3

1cba2d88c8...69.pdf

windows7-x64

1

1cba2d88c8...69.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 21:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1cba2d88c89a5f3b88f5615153138469.pdf

  • Size

    77KB

  • MD5

    1cba2d88c89a5f3b88f5615153138469

  • SHA1

    f85b518eccf169397179babef7fe4b201b3b0401

  • SHA256

    9d5cb6dd9b59d4aedb1563877d6e606f07f8475b4344a8e55016406d599d0206

  • SHA512

    716611d7e203bf3136ad5bbad8da902d14b6f74e772da778c5bca94d690e58bae148fd6d541ba2bb7d9132a06a843d9d3839bf2535d39f33a04ef3b2b85bf9db

  • SSDEEP

    1536:o/RqJBRTDV8lX5Zqhkvm+TzX4iTmSTAclPcWO2d/0gc0ErWUpO9mAZs:KqJB1V8lGOHHX4iikAcR0R0Em98

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1cba2d88c89a5f3b88f5615153138469.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2436

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f1e691869dea400ded0ca15328080554

    SHA1

    1a0e5c29c29dc4ce51426307c567d65bb9f43585

    SHA256

    51cd8fa4f691c6dd1dd1064a0eff43536b40e8136ed05d327dae44a76eb68a83

    SHA512

    c2a55362ce0ad2bc87da28e8c4f8006c923e22f66e4a4a320e6d69745cbf95b252b655bf20d73f972c29f5e326564868b3d0179d790f9849843e6784288cc135

    Download Submit