Overview

overview

3

Static

static

3

20f2227d21...d0.pdf

windows7-x64

1

20f2227d21...d0.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    20f2227d2160e704cb8e673684191ad0.pdf

  • Size

    46KB

  • MD5

    20f2227d2160e704cb8e673684191ad0

  • SHA1

    d450233ff2f7be3bab2bc163deca8cc0eaa6994f

  • SHA256

    fb85d0aae9ff427e9bbfc2fbd8dad0c412356f240f94491b94a65d9a0e3e2713

  • SHA512

    097a381bba0f2bdcca9dcd9e0a487d0c1189bbd8dde42daa145f96513357c74e37502f13f56544fba5942245b2c4c9a9b8528fd91c10cc501fd0cbf7092411c5

  • SSDEEP

    768:JseeCCrgI9pgBazg3IV1g/yRl9Pnidl6B+b8a+WYEPPyqbjP8kC:y91gJ3E1qdN8aHYEP6OokC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\20f2227d2160e704cb8e673684191ad0.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1572

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    53756373ae792d7f381d5771e2ab8d65

    SHA1

    bd8b03eb8f61f406a3b3ce3a6dd2bcdabbc899ef

    SHA256

    dee8251945fa10f29fe33d98b8a6e1f3d4cd29e22425e584e6b09b095d96bf48

    SHA512

    64c633eac332965f1b765b5e8a33e06f5887258aa61f72b4c4a6dcd641f3afed8aaa26c38872b1aaa0a8f218d7d9f8b7bacab6e29505cc91e911903a103b1b94

    Download Submit