Overview

overview

3

Static

static

3

3888e01413...17.pdf

windows7-x64

1

3888e01413...17.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    217s
  • max time network
    151s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 13:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3888e0141364143dd0965d887e177817.pdf

  • Size

    85KB

  • MD5

    3888e0141364143dd0965d887e177817

  • SHA1

    6872077bd29bf326effc4fdc1ca58e826dccd5e7

  • SHA256

    6f691f60536c314188bc27063c058a46191c0241ac52c23a1892a74ba528dd67

  • SHA512

    6f7b9dd6eb29863c11032c9a36fa655e2b2676869c8a2b78c523910825b9a32a6c4dffb882efaf7f801385ae88871d5d5d8cef5863bdd5ddd4df5c0ba629386f

  • SSDEEP

    1536:xUWuNRfXTCN0lISO7n07GSvBvPbig5Co1nJ41Cjpwwbh0WapOtQHWXhtzmAJ:5uNRfX+W7an05BPb3X1nJGurhVtQwjz3

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3888e0141364143dd0965d887e177817.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5a4e1469a59e8460a17140595946e605

    SHA1

    c5e45a9b53600b9a6ff7a8bfaeb62c518c99650e

    SHA256

    cf2c5d06aa4c1e4d9043748329c97514dad9c10f3bab53268416ca158a3a36b0

    SHA512

    bad2d0ee125603dae7458f3f2fc5cb0c18b216538dbc837a3685dbf2cb8dd0a195bfb0b5701727d7eed95e8f8ec61466fec3b4fa4090d9febb30875b032271b6

    Download Submit