Overview

overview

3

Static

static

3

22b41d6780...e9.pdf

windows7-x64

1

22b41d6780...e9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 01:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    22b41d67800505c9f59fa5d3458340e9.pdf

  • Size

    73KB

  • MD5

    22b41d67800505c9f59fa5d3458340e9

  • SHA1

    12652d3b12292802f4b777518429335e56d04669

  • SHA256

    3267e84dc62056bde800906eb5ac2d0d0281e74d73b12a6209fb55d646a1c640

  • SHA512

    365f0e67c53d5e15f96dd99c32316d45022cce6dc1da4652231c3cfad5fe2c354b33a74c3af0d15af0c1fa448fa96ecd376002f69546b442963b14c1d10b3a69

  • SSDEEP

    1536:fuRGEiImJnAcpxJ2QIccUh2X5sf71lMtsNj8uwLIJ9zlcuZhoroV:8OnbpK7O2X5sZats18uwLIJxlcufoC

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\22b41d67800505c9f59fa5d3458340e9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f9acc5a8580afeddd0f31aa5ed8a310d

    SHA1

    eda7cb31ed22590724a65a9e9c6f5a31d0bb7317

    SHA256

    3ac1874ce5f690b283d8da24893c67a644b9cbd061b60723a6cfa4ab03b6db29

    SHA512

    8599f60a0658000ea7006fa7dbf419714a66ccf612c75f31f5bf240ee4b8dedfc4ce3754d2c233cf6f4767a9f86a2172ae9b310d23e9d8ab1d9d9d96b6ab43a1

    Download Submit