Overview

overview

3

Static

static

3

2c8f85e788...c4.pdf

windows7-x64

1

2c8f85e788...c4.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 07:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c8f85e788074f6d330c40761226f1c4.pdf

  • Size

    84KB

  • MD5

    2c8f85e788074f6d330c40761226f1c4

  • SHA1

    b10b0cec5a47b49e8716bdf2d1e1f32d75f015bc

  • SHA256

    a228e9dd82a84abd0d3d56916d98347d7391c002a717dcce9dff15baa6dfee2c

  • SHA512

    28e725ca4480e296d9dfcd7a8b6fee58d31ba2f47d87d7d1848e4290732b396d90b628ce9a1cc95b4ee912a0b8c519acd190a37cfa8f29746850794b0612e944

  • SSDEEP

    1536:BYiB/dQYd9HFoBt/xVuqiIa1nCWs768OBqgKjyY/i52oucJVPVozWSie75aW:8Yd5u1v2CblyYK52oR9Volie7t

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\2c8f85e788074f6d330c40761226f1c4.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f4e4e385aea066fc2ae96fa793f4ae6d

    SHA1

    2bdc1e9ee9e2290dded4967635518e6375a3325b

    SHA256

    4dca03ae614ad28f08f18d81a4aaf937c81fef08b7539d373eb22b798880e325

    SHA512

    a1b22429e026a54aa1d8bfa53ec8bc1b61ce2800c3dc14a4ad08ed1b13b9292f3531504bea5b62967399b594cc74f78c8bf458ee72db1b5f1fab6c111054bec1

    Download Submit