Overview

overview

3

Static

static

3

2545f95294...a9.pdf

windows7-x64

1

2545f95294...a9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 02:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2545f95294633d0647b86da87fc883a9.pdf

  • Size

    87KB

  • MD5

    2545f95294633d0647b86da87fc883a9

  • SHA1

    f484a0b172c39f4ca47122d012b97833b39d942b

  • SHA256

    42d02eb14249626911485b4c08b285842e7d2c733ed937b3a528ca756854fda4

  • SHA512

    ed520302f1330fe18becacd74c41c46dad432f996e184dfe999c6f3766506e4dc399bef1df87daa430a51dd28d0457caadddd49ef351e5472ea97dfc680c8003

  • SSDEEP

    1536:OQTJysbfm3jlJOaY1QsU5VpGekWwZL4MP6Qa9FW9WdEHhmwWZWWQpOCJ4M:GdOUXpPktyOJswWZJCd

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2545f95294633d0647b86da87fc883a9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f5e915456fd0eba3271e930aa48c062c

    SHA1

    fca7f73bee3946693bdc579cd3bc99a16dc24045

    SHA256

    f4e0cee126f1a51e7a0afc6d4d9e475548a3fabccf293d9fbe690df851d60214

    SHA512

    279c1d5ddde828ad1fa76cf332a871450490fc4e17482878ec56faf2c8fe97023d864cf7e04f4dcf69ab72dba96fbc70a8d6ee631b2158b09f0ca4074171118f

    Download Submit