Overview

overview

3

Static

static

3

1ce5bcb7df...eb.pdf

windows7-x64

1

1ce5bcb7df...eb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30-12-2023 21:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1ce5bcb7dfeb17deeab9592b8e3277eb.pdf

  • Size

    86KB

  • MD5

    1ce5bcb7dfeb17deeab9592b8e3277eb

  • SHA1

    66316e4fc4fdd0220528d806e9f976ea5a67bc90

  • SHA256

    a6f91351428065ff0f850b0a7c78d1fbe9de271f555511f7cc2c9bbd4681e058

  • SHA512

    ebdd241a2740df7ee7f5649d0854f24e2a5720495853e1ffa32e208d354686dd49817dab51d3c1acf6c95c4ee29ed8d78431576095b76caf5294aab13c625502

  • SSDEEP

    1536:NW9pv8HpYsiMaTVY4KxQP08tfFcbMUS58UNK0aG5CJN+vWapOtQHWp9GTAVJq:0ipYsvaTa4x0GFuMUGTM7+AtQX0S

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1ce5bcb7dfeb17deeab9592b8e3277eb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2912

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    e718e41dc0b2a332aa7c0ccabc55eb66

    SHA1

    5706fef611aab0cd40dbeb362d07ebb3e54b76c4

    SHA256

    c77e2a853f2b8750263efa0e0f10440db795fc46f81fd1276b4336de80ce1a2e

    SHA512

    5e16ba6b949ccbefcab23c1e61806d1193f71bd7921c1a6ece01fecd2c88f51aa83d1bf68dc2588f5b4bb48b06beb937d4950dcf77942a6930cd10d48cd490aa

    Download Submit