Overview

overview

3

Static

static

3

38f5363e8f...f5.pdf

windows7-x64

1

38f5363e8f...f5.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 14:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    38f5363e8f0720e1671a32fef2123af5.pdf

  • Size

    85KB

  • MD5

    38f5363e8f0720e1671a32fef2123af5

  • SHA1

    9c9da524a39577213ef7b9c224cbf9baf0408bdd

  • SHA256

    5f26bae711cd58b477731e696d6ea3160765f560bd16a586060fbe2296007cc9

  • SHA512

    8b08d23cb6ede819297df83f4861f6e3124f6972db61dd4e1fee667a8efede6df3eb99c2c817ef4999ccb60346a1b94f0d7c34651982dc060a07ead6c4c737fa

  • SSDEEP

    1536:nq3FBoYh+YC1IF6NEG/93yQmfCL4DxclC52HWOpOwrKWQZKt1vUs4:q3roYhI1m6NRmfO4DqrEwr+KnM

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\38f5363e8f0720e1671a32fef2123af5.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5493282bde970609d86e6d948ab5f32a

    SHA1

    0c00fb91074d567099394a9c7bdded2469c3d87d

    SHA256

    b2f905306ffe52223ed3cddffdc26bfdbcff4791917144f4f6cbcbc2a676f7ef

    SHA512

    33bbb29d0d4ba24ea1d32ea158290da82d4ed17bd58350a9d8ace27b1e315778a6f60ea0f6be6ba60ab4759777948bece42f682118bc06b5ed07f9d90f66cdc7

    Download Submit