Overview

overview

3

Static

static

3

2b3a37290e...b6.pdf

windows7-x64

1

2b3a37290e...b6.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 06:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2b3a37290e8c6da525f05ddcca811eb6.pdf

  • Size

    80KB

  • MD5

    2b3a37290e8c6da525f05ddcca811eb6

  • SHA1

    6e35ae6b6f9a07ed0fd16f38bd30dc14b7662e95

  • SHA256

    d73465ec28a83abcf43211c90782fab94383dfdd0bbd16808aa68e9eb831314f

  • SHA512

    61452c36b405402f428befd2c2f4f92152779ab05b4796408861578f3698cddd3631ee0e6aab4b0ae404ca70d6b23c97fc34c0bac1d698b079be7dc6253a1b19

  • SSDEEP

    1536:MpXsQH+lHnufhl10dsct4QLWoPqqB1iSTbOO0+pzK0QWqCxc4IWepOy7S/+WJhMs:iXs/chfct4ASqBDiO0kzK0iejVymWWJx

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2b3a37290e8c6da525f05ddcca811eb6.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    45a692c6e9b9204a6ac8db276a088285

    SHA1

    909dde5cdfe32920c957c606a49ca6af86063b92

    SHA256

    68f71d9bf8b3382763f26f9570bd2be15910ed303d4cc760fd623a9c3c77ca14

    SHA512

    5ed9c880727e600d75802e17b7f00aeca59e2fc69df1f2d18daf058cc30c878265efc5526ab188f24f730935b2fc72dc837bb229bf5aa14b1f26190431aeee93

    Download Submit