Overview

overview

6

Static

static

6

295ceb4177...64.pdf

windows7-x64

1

295ceb4177...64.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 05:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    295ceb41774ef6fdbaa5c96e64a23f64.pdf

  • Size

    49KB

  • MD5

    295ceb41774ef6fdbaa5c96e64a23f64

  • SHA1

    7f5992bc2b93b5b12575e321b60964876e111e93

  • SHA256

    c4d0678023f61c45237755713a12495aa4e5e53765f10fce7a4e6955b816dc3c

  • SHA512

    8f7451ac00253e785658a22d02bff743b7c61e7a28879303e4b763868a05850d67aba6fe74ff86315a27dc78b6e37419fbfeeeda9ceea7fc8f9d8efdfd1e0067

  • SSDEEP

    768:igqxOreHYO/tHDPhJQjqCci/vywHr/LuwhpLKMXFcjAKm9pGf0VF7KC8T0+YDOFx:bS6K5Vt/iHyKThHXuL6pG2STuDOn

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\295ceb41774ef6fdbaa5c96e64a23f64.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2940

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cb7eac576546ada0d775c5a688b93b08

    SHA1

    5e3f3c069c2622dc754750e9f1caf3f0ee50f24f

    SHA256

    9d1dde95ae4c33fdcf7392078b4ec23c106f0f337cf8eb81e53569019ba4a903

    SHA512

    bcc0a3f2c77a32a5cb9eef0b05c7cd4879814989cb3bfe33320e86235e543fdef4dfd0310a30191c180f86660b59b4a989e784aa0a279a23b312739215eea67d

    Download Submit