Overview

overview

3

Static

static

3

38875eb035...d8.pdf

windows7-x64

1

38875eb035...d8.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 13:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38875eb035d758d6ed5752975bdd2cd8.pdf

  • Size

    37KB

  • MD5

    38875eb035d758d6ed5752975bdd2cd8

  • SHA1

    d3753c7f67cc76e4987fcf1cf5e7fe982d96bae0

  • SHA256

    99018e28d83e750285117cf851e9215ead49fae1ef79d25d8257301bea9cf327

  • SHA512

    6e6218f591b25ec645c5179301860400b01cc34ec5b66e93dfe8e410da8965124c960ac6ebf1c41736e9582be4ae5e5fe27ed93705bd6bbd392881ad924893c8

  • SSDEEP

    768:qnNd7P8mAYz9shQSyxeUQE2MQkmwzv+r4KfFzj9i3UceD+9Jv:ulYyowFzvfQFzj9Jc8+9Jv

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38875eb035d758d6ed5752975bdd2cd8.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2816

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    3ca65f136b21604447408bd2b4f04305

    SHA1

    30691fa8dcdffbeaed7587efb7b0ce5f0dabe682

    SHA256

    e342b1d1a854c41dde2a4ddc9fa4d060df9f083b6e6cba35cd29dab2831d3205

    SHA512

    2a6c26ae64f023616ff1911e0128d9a2a995366498ee4da794a5dd2c291589f719e4e4beeaa614c8dde8c714d23ebedfea907651fd83beb018bf2a5aed45c196

    Download Submit