Overview

overview

3

Static

static

3

3a5bd314e7...41.pdf

windows7-x64

1

3a5bd314e7...41.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    31-12-2023 15:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3a5bd314e7ebaff9bdf06bdee9391b41.pdf

  • Size

    94KB

  • MD5

    3a5bd314e7ebaff9bdf06bdee9391b41

  • SHA1

    ea9be1b42d5f6c69e552d56789803872b636d171

  • SHA256

    80205dad1135240ae2deaf9b096e862ffbbdfe17084b5ba4ebb6fd4a1e728ab9

  • SHA512

    1603817f8d32ab6683d3f090c05f078d7c0f3f11e457d2e1f0b118e7f57039cc108177bb59237d57cb3fc0d98ee5e7c993ff912df4a0bf956929f7a87cec4bc2

  • SSDEEP

    1536:3rFkmdzcTtzgGK4ncov/3ECwKbXxR2XQeFBPzvWBW0o2QtFCkWxApOGOIK2NE7c:BkaUtHjcApR1AFBPmkCl3GO4l

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3a5bd314e7ebaff9bdf06bdee9391b41.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    264ecf832ed888cae050b9fa77c7e2b0

    SHA1

    46937a8279e64300899c29fb31b5fef14fc9db1d

    SHA256

    9a9a5be8f02419ee74efca02c5470ef8d3a6f5ade424093318e42b47d07cbfd6

    SHA512

    c84df2da3d6a71125fffbfcd1e6b27491750e9a05c99e23e3f9d1b1bd7a945a48155ebe385b7d4cbd7b433200c4d911f8df104392803d55e26171b157bc64402

    Download Submit