Overview

overview

3

Static

static

3

2ae922e508...21.pdf

windows7-x64

1

2ae922e508...21.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 05:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ae922e508b172cd82a1e81aa06efd21.pdf

  • Size

    90KB

  • MD5

    2ae922e508b172cd82a1e81aa06efd21

  • SHA1

    77973d449bb9d850defdbe4abdace945da314b6e

  • SHA256

    c3fd5e55c4de5f576bfad545810b96c41d8932273b9cda12a6b2a709597dbdcd

  • SHA512

    2dd58135da476622d3d461f1defa8cac521321bf2329d9229119aaa35fb7695c0fb2af9696cab44df1664a58ac76e20e828657ff65af9163819f63e5a1a1015e

  • SSDEEP

    1536:m/chynlQz9NxYNRC5crO7O1p9VjlZsd1Qdrtxa7rSNW6JHm/xWplyWapOtQHWkhK:anmDxYNRjrOy1pvlZQQptA7mNhMpolPF

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2ae922e508b172cd82a1e81aa06efd21.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2956

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    c1c9e1cdcbe4ef3e6c8ab53693a38ad0

    SHA1

    708dba9263843ca1baa6d96ff1ce6f36ad642226

    SHA256

    c23de7a5db4df738d3733f7561237ebce263e2751aaca73d656cd996a16b9464

    SHA512

    4e13674a4d4783c406835d155f3910151ba3f4a0cbdfdf3504143c3a56dd5c57ec18effcb04824c12b79f6fc1fced2ced90b6ebafb447214ad94f78f7c912118

    Download Submit