Overview

overview

3

Static

static

3

298b879470...18.pdf

windows7-x64

1

298b879470...18.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 05:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    298b879470ddbadbe1cc0b5cf0576118.pdf

  • Size

    74KB

  • MD5

    298b879470ddbadbe1cc0b5cf0576118

  • SHA1

    d6a5f104c0c08edfe82937fd1b84deac472de51e

  • SHA256

    601db98e664980eb63c62328770ff2b5d46e2ed0991ad0dbc1735407f4e3094a

  • SHA512

    ca88a96c8acf8151218e4708d1f7a12098651fdbe42209e904c52dd68698cea69e0ce926ff93d123ac40385910b007fa2b1677593c308f350e781155d4766840

  • SSDEEP

    1536:3B/ZQOPvUBIW4fmv4SAs6R6mw7F/Hl7JJAVJ3WCpOViIW5woNK5t80mJk86AC:PznUbDvRl6R6N79Hl7JJagViFk5tgJkJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\298b879470ddbadbe1cc0b5cf0576118.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    16173d3f8e829adc4b8194ae6bfd37ef

    SHA1

    2ce3176b6f08eb003867dd9f1a30b53b1f0f1f9c

    SHA256

    86d3f612fba1533cccfb2a5dd2b3b92a79bf101a5ae2e3b35bdb9bc46e499285

    SHA512

    3dcf786838e2ea8cfd73cf70a38a6dc2185f985d45d17713ba16608745d21a035512095078496a846d95e2c88304834b0a87a78b9462dde52a60090a2a334562

    Download Submit