Overview

overview

3

Static

static

3

402b292266...19.pdf

windows7-x64

1

402b292266...19.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    04-01-2024 06:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    402b292266a4037134ad69c79e907519.pdf

  • Size

    44KB

  • MD5

    402b292266a4037134ad69c79e907519

  • SHA1

    49d33be5fe60f75e25338b2bf5136baf69af9b8d

  • SHA256

    bcd368d55a635601455f162274d6785afacd34d2f89003b329de587420badf96

  • SHA512

    cdd81f4289d78bcc0d60b26f725e9d215a3689c6f6e5bebe7db1cf472b61971b43a36083d3ac304f16a8142696d1f51ae19fef605ffe6dc5501ba25efeebf94a

  • SSDEEP

    768:C1ylvTr1Wav54Q91gZ077m8L32lv/EFC8k/c4/bXjA2zqUVfP1SbVD9fCFemWJfA:C1ylvTrckEZ077m8L32lv/EFC8k/h/bD

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\402b292266a4037134ad69c79e907519.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    cbdc5a898aab57d402a0045bbd3c0c94

    SHA1

    7ccc3c9f81e8b39a3e61612f1440128dd1fdd327

    SHA256

    cab2e97b36d2d57cdb617326b38907bf586f5b97bcec6a669f65f1f80a426cfd

    SHA512

    a5799a4c5ea4663d18f6b791ad7e132ec65de7f5ab63aae760b686ff85c1980484da7c0185a60193fd21f235081cc9e252db97bf739f6b263dd95ca9b69ab455

    Download Submit