Overview

overview

3

Static

static

3

1c286b8bcf...67.pdf

windows7-x64

1

1c286b8bcf...67.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    144s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    30/12/2023, 20:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1c286b8bcfffbf180a7e5a1dbf7dd667.pdf

  • Size

    149KB

  • MD5

    1c286b8bcfffbf180a7e5a1dbf7dd667

  • SHA1

    d8db9eb2ed460ea521a29b524568c083b9e942b7

  • SHA256

    3ddef3b3ce9ebc9023daeaf66499c0e1036bd9396795a4da1aa3f9382e2a2057

  • SHA512

    f5da5d270b6554ada0ccac3be615ddca2b39eb822f929d787c7da9058450b549649c581df75b25beab39fae0992cdec38a63680a7f3197a7a857f4878f999967

  • SSDEEP

    3072:QEKaneEDid4IZER1Yn1K32VyHNbPXMssedm05q600NtjiZoCo+T79:QEKBJ4sERSn1Jgtbkspmeq6vmH

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\1c286b8bcfffbf180a7e5a1dbf7dd667.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6b4349f1eb2f8faa21c05bcf9c9bf4aa

    SHA1

    a3a40b3a7117da60bc43fcf0f7ae2f47511f748d

    SHA256

    95126ff674a4a17823b89b4201980ea0db68e0e8122de39f21c9c72a18712cd5

    SHA512

    c944d80cc065993d35fb070263048e46970233ad11b65c2ecb4a32d334a6525966df605687de305c64008b2e3d7fa294ecb1720a6ff3f15c0dca266863c265de

    Download Submit