Overview

overview

3

Static

static

3

25e2ec3ea6...db.pdf

windows7-x64

1

25e2ec3ea6...db.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 03:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25e2ec3ea6e4eb5fbab35d195c39d3db.pdf

  • Size

    86KB

  • MD5

    25e2ec3ea6e4eb5fbab35d195c39d3db

  • SHA1

    9c88d5d4e58c9c0112c58206621e3656c88676ea

  • SHA256

    8c24b19f27622c72ccacadda0f5d20ef5444b6a401825d44089f126282d500dd

  • SHA512

    6220d1fe4dbdd3d2970c19589c29d2f8a48eff7ed532f5ac58ce163950366141e23dc9da9440e55662fc11eee263027aa9a428c1902cfdaf6efe2586be270758

  • SSDEEP

    1536:QUsu+/tvjg0Uijpf6BxwnkWXifc3KSZ1/xx/kTcT6DpAzzDEIrWOpOZyWbJaeE9t:t+Vv00U8pSkn1Xifc3V17/T6DpSzIIk0

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\25e2ec3ea6e4eb5fbab35d195c39d3db.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    935fa357fa6339e3827eb59835c69ff0

    SHA1

    6f4d2ca68cdaccac7eb1635c65988d0e998133d5

    SHA256

    b5750a03180f0d93e59b553b04dc88446826cbf45bee10b7c15eb54825778919

    SHA512

    e263865be0b5a1fa3af0599c6d41814c5ee038350a6c237ca60690691660cac83328b26294deca581268ec32e5d6cb4a97027743aaefdf3cd0c3da3d21a82396

    Download Submit