Overview

overview

3

Static

static

3

370be0dc6a...8d.pdf

windows7-x64

1

370be0dc6a...8d.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 12:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    370be0dc6af1fe40ccb3769b9bdad98d.pdf

  • Size

    47KB

  • MD5

    370be0dc6af1fe40ccb3769b9bdad98d

  • SHA1

    95005c2a1f164f1522958deffe4fada7e6f91b22

  • SHA256

    c44346938103a95c562d99889349d68754eaf39d26e68133f9deca0a9e124394

  • SHA512

    178bae852804b2512fcb78644ea15fadbbe0713e30148c0b820fcf2d2ab3b21dfc580875eb5c8e004c84476fe94436c7c0461af8d3b7a883ef319258ee472a72

  • SSDEEP

    768:QyCLEg7HXv2y2zqyT+DgKS1Iy7vXb3Sj6aZmi27uUMH15HGQM:IEGfVVDDgK8zNaMuVHjDM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\370be0dc6af1fe40ccb3769b9bdad98d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2636

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    1e7ae52e004a6d1740d08f8809b79f59

    SHA1

    19766b04a2df0264ecec9a249da16dbde5214cb1

    SHA256

    905c2d36fe14f088f21775e15c2e4a05aa3ea44c8e519d39c9d4b3e8010b6ec9

    SHA512

    44717bc0ce51222cb0c62488ebcd144d8dbba315bf3df47a47cd4d1add6ed51201e9c034a59d97a099679626496d9d0bdde44a0f166acb1e3a1654f745597712

    Download Submit