Overview

overview

3

Static

static

3

37de88513b...96.pdf

windows7-x64

1

37de88513b...96.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    37de88513b58000cf1253ed846669296.pdf

  • Size

    74KB

  • MD5

    37de88513b58000cf1253ed846669296

  • SHA1

    20551f3d101305c640d225528f3bb0b830a1b5c5

  • SHA256

    38f504d21a33470f3b231935d86c655b358830afaf4ba1c4a72d96588f180607

  • SHA512

    7737b29f001494b828bb2e914c2e8e1bf990515501833554d9a2334332b88ccd5b58f064144fb4bf7b40082248aa78e3169bc8ac847fb7fd47f3fd26dedaff34

  • SSDEEP

    1536:jNBK0Mu7jCBh+rTT2L0qG6KeVs07Z+ozrx/jF/gXef:bK0vaUr30hG6xH7sonx/jeG

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\37de88513b58000cf1253ed846669296.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1720

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    a97aa835eccb0a7c829e6e3db4c653a9

    SHA1

    a6b98f1234ca047128fed7f56f36ef4a30869eb5

    SHA256

    88299d56ee395a7d7c91bd6155faabf79ffb39fb772c26e1c89ec7d10f587c23

    SHA512

    708e430f4935c579cdc366525025685693426623592cb335e7622a36eb219fa7fe8c6511d5cf616990994d8bcaa5250a2f0da4d8d91bef955a7c078a8fbcd0fd

    Download Submit