Overview

overview

3

Static

static

3

288938a581...8d.pdf

windows7-x64

1

288938a581...8d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 04:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    288938a5816fcaab6f4764dc0c72988d.pdf

  • Size

    83KB

  • MD5

    288938a5816fcaab6f4764dc0c72988d

  • SHA1

    a69bbea43cf6ec603794ace9b5dc2b700555be2f

  • SHA256

    0367af87b7c54352d7a1b9ee333930438c4d10eea477e7f82dbcb1e71f8e5027

  • SHA512

    cef6508a8d5c155815171135c4e1663e8848920798437411b1d68e43281d96a74549b1e018ee1ae59cc9349f3e3ea0fd0710cc9957e647bbc09c72bb52b060e1

  • SSDEEP

    1536:6iFvzNZGnQjV+NlPdfnE6+uKNUw+oRIKpPhl2J/o5vLdiKWCpOViIWomCT0PwJeD:IHNLndin+etp5IJ/o5zcHViYH04JeD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\288938a5816fcaab6f4764dc0c72988d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    bc98a0015fb7011e07cd0594e7306a36

    SHA1

    ccfdb6502abe03dcb7370dfcd39084d4b1fe5c19

    SHA256

    3eab00499eb6a2ed8d8b5169fe7564f41075d1a0b3396c5d91d7f5bbe38d8327

    SHA512

    2b427ac21c42391d6e795cb22748f7a664a7a1440669896bfb15aacdf0093b0f9254e3a8ca2b900dec21d8e0be01351bd348594d30a2c570248bbb833298bcab

    Download Submit