Overview

overview

3

Static

static

3

3ae197cf9b...eb.pdf

windows7-x64

1

3ae197cf9b...eb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    125s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3ae197cf9b90a783729be98e892a30eb.pdf

  • Size

    46KB

  • MD5

    3ae197cf9b90a783729be98e892a30eb

  • SHA1

    f6f8337642541081232f7edaf1427a4d17c15676

  • SHA256

    662ecf4625a7156595867cbc74fbc9e754b3cbf43b810c9d46ab6a83fcc0f2ff

  • SHA512

    bc2e5b428a4595302373f83b1ba2759708b72fb5146861fa3eea84e196a97c3979281805fdad0fe4c6a481dc61b9534adce85c166c782f8d0f4f3bbc125af4c8

  • SSDEEP

    768:N3dnrOlm5TOjqGMwMOoWczqJSt6r5bz6rZGtkXZsxawC9ntwCdq5o0eXfysjlzET:NJqmpOUwMzWzJoIz6rakCMjFtwCdqOZS

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3ae197cf9b90a783729be98e892a30eb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2536

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ab58456596c8f60a46f38d8ec8e80020

    SHA1

    90692093314cab8dd090ea9af43a92fae89c14a5

    SHA256

    89f8ed34cc9b6bad6422123a720e59b4a401b340c900e93c17d6d087a2e1e0fe

    SHA512

    76232066107037bf497f20cf48e1dd82ae803107d3060b1b52afec7dbe6121080159c121547b41e88110b01bd06d194772801d80286a3140a1c6b2bbb13bc252

    Download Submit