Overview

overview

3

Static

static

3

4230ee42ba...46.pdf

windows7-x64

1

4230ee42ba...46.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    04/01/2024, 23:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4230ee42ba2438a427e9b8cff8c7f346.pdf

  • Size

    35KB

  • MD5

    4230ee42ba2438a427e9b8cff8c7f346

  • SHA1

    669ca05088fbe88fd2ad9d2d69362c5845e5655e

  • SHA256

    0d6b46422c9338bd246d6d95cec8fd194229864da0c30eb64ce9fabb1290ff17

  • SHA512

    a0a9d600bfadf8c3e81ff63a9158413440d88152275b2e1be7e3c9e282eef26eb5c906cccab49a96bb14bafa1910b339ea101a333b306978f10193d1d4f11992

  • SSDEEP

    768:bWfJQA2qsPHe6L1/GSN9mVUIIvvboXkVDG3llfrN2yA1hi:OGe6L1/GSfmlsbiXRJehi

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4230ee42ba2438a427e9b8cff8c7f346.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2456

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    2KB

    MD5

    61c28dcdb13bcdedcc21e4635519bdc9

    SHA1

    1c3e1d8fa777186f3b071daa7234c81cf96a6615

    SHA256

    f3611a767259740990b17a34790173112a54258820928f257e758b989e900bba

    SHA512

    a3b52c391fe5590a8081b60475452185fe58202220c138e1f692c07a96e13e7808b24eabda37b424d1939fb2a6321e3adc67f1554301d8c17377e28ee7a124a9

    Download Submit