Overview

overview

3

Static

static

3

3d509c8912...fb.pdf

windows7-x64

1

3d509c8912...fb.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    01/01/2024, 16:18

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3d509c8912f0d51691aa5e05d78d93fb.pdf

  • Size

    232KB

  • MD5

    3d509c8912f0d51691aa5e05d78d93fb

  • SHA1

    7a8fc19b25576b22d70a99f70396461994af28f9

  • SHA256

    17ade6e4f4f698f89265b2c19e08b271aa816c01257aeb72fc21e74809b4078d

  • SHA512

    148f5e0bbdc6c16d6bd603ef39f661d3c2178f962f0c7bd7d77c6f28d98eec618253d9226ec1cbc942a630bcaa316358f70c4684a0f94bdf4185e75e6309f7c8

  • SSDEEP

    6144:NMq9IVW82qYQvxR5YBB2Udno6Q2gsoAvRjHJB/5b+EN:NMq9Y52qnlYyUdnorooAFJDbNN

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\3d509c8912f0d51691aa5e05d78d93fb.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2348

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
          Filesize

          3KB

          MD5

          f354d9b8a64f8d261e83bbce821b266c

          SHA1

          77c3fe492195eec3d6310e87041e9a4aa1483d29

          SHA256

          0505144de72098008c8cfed55b6aa99ce39342342dd9e6edd0a9021327f0bc03

          SHA512

          76acbac51be994ce56ad523f29c43ef1e7d14a02cc2f0169dd1a64b6566f80e1890b2456d1fbb7e923f5a991278a377fb8302c71bff526c6be93700ba3422d9b

          Download Submit