Overview

overview

3

Static

static

3

36f4799497...f9.pdf

windows7-x64

1

36f4799497...f9.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    36f47994978859227960a2cc4c3a03f9.pdf

  • Size

    87KB

  • MD5

    36f47994978859227960a2cc4c3a03f9

  • SHA1

    da7cd72eaf4c001a26a442030e52007244ac2e43

  • SHA256

    d80323b3eaf3816dd6d1889e0a5736365c234101ee7562b47849a5ef37f2de13

  • SHA512

    e42d3e5f42070055b3facdbf0c07a4f73eb7501bdd0ab18a3adb62c4e6c50da98dcccc4e6b779d8b7500598b50c1c8e6ec93535d465be3421ab467faa3064962

  • SSDEEP

    1536:t+WB4xY+WQhrNtpOrJmBMx3rcIUYl28x8IStO2+1m7lfdm9vxkhQrtWa5q2PV1JY:BB4x0QhrQr0yx3rcIU+7xdSk2+UvOwQw

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\36f47994978859227960a2cc4c3a03f9.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1336

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    f0c082514c7f16d22906735d21973913

    SHA1

    fca88c6b5342eb0848b8a75215eb8b3bd248d4ec

    SHA256

    5848679a7e5e69baddb16e90e2c87c20f430370a59ddccefc1971469c0d78e21

    SHA512

    2a4fd2d26230937cb1a523fb0edb4a4b0080ef13884085ade94b7e69557c296001e4967c1401f5699dc5489dacab4dfc2285038991f36df1c0152b72854975f6

    Download Submit