Overview

overview

3

Static

static

3

217cc12fcc...eb.pdf

windows7-x64

1

217cc12fcc...eb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 00:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    217cc12fccf9899dff1a62da039e5ceb.pdf

  • Size

    43KB

  • MD5

    217cc12fccf9899dff1a62da039e5ceb

  • SHA1

    f85de5c576ad82de8db041b0df7fb293a5627761

  • SHA256

    f209704aceb3af3697fbf0c85c32625bf961fcf763e8dc025182adedf942b9a4

  • SHA512

    1f08b178622a9bdfe22bdeef3068c2e3fdfe2dc078dbb6e5f5dc5b186ac4420ecfac8b60ccb3444ef96088ad871060ebb2e1fe1e4ceea0773b2784dd261bbe91

  • SSDEEP

    768:3R3/NhZyBhYi5i8orgD0UPHVEi3RcX/GNwlkm03zATOjNH54fvxbKAORQD8iJB:3R3/NhQBhYCOUPHZqvG/EE54fvxwRAFT

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\217cc12fccf9899dff1a62da039e5ceb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2444

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a9641b1332f6b3a332657d9ca37a4d69

    SHA1

    5c7e601d4e12c7e33ff308d4761d3df6c8e462bd

    SHA256

    df5169cb206369ba7fb50fd9902d7de739ee056a7d5c7ae504877a5c15587725

    SHA512

    e0bc74d620ce576600feed81b335f7efb2e06b9c9f65c5940cf9f6261fc329995e5eea4e0d3677388ffbe9e99682fa12a1c876b51b0e37ade1c7aeb5c4eed582

    Download Submit