Overview

overview

3

Static

static

3

2767a670d4...a9.pdf

windows7-x64

1

2767a670d4...a9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    134s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 04:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2767a670d4b5176a0bfd676f08e72ba9.pdf

  • Size

    76KB

  • MD5

    2767a670d4b5176a0bfd676f08e72ba9

  • SHA1

    b6186b7cd94c181e777af36ac94781cacad3a49c

  • SHA256

    0a165a956f78e6ab9664802a42125b760d714718c04380678b8fa988cd8e820c

  • SHA512

    f67dfed2b16961cd83e0234acbf9f694d0c65c22b437ad0ca55722ec3258dabf328efb5e7c9120f7f60516813450768ddbf3e063f5307e31c8ab49585c6b6d91

  • SSDEEP

    1536:J2EsWaXZIeP173FfiH6Yw7RbfyYyKQINmAiDoMIi+xTZHEupAkWu6Xu:3UZIAqWJloyMIfZku+u3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2767a670d4b5176a0bfd676f08e72ba9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a0f926c1a6b3d6dc3f630287354c71a3

    SHA1

    50c26947affe94b6db9b537bd18cd0231ef50045

    SHA256

    472dd4c24e3ce529645fc912d2441fe383411bc2588d29bfd7a9733f8dba1bc5

    SHA512

    b35bd48d128fbb98c47ee4c14fe482b0bdb80f603d934dec3b669f52fa32c302173065a03dcfc27c2854d59cb47b33604016d7503bf4116c4ab95cbe9753d2c4

    Download Submit