Overview

overview

3

Static

static

3

42c089c728...15.pdf

windows7-x64

1

42c089c728...15.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05/01/2024, 04:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    42c089c7281e320b178efa09095ab915.pdf

  • Size

    86KB

  • MD5

    42c089c7281e320b178efa09095ab915

  • SHA1

    ad06f43a8e5e4504859ae2ec72db26c96dac467e

  • SHA256

    cb3ce42bad428966972252b0f06447565ab0cb65b1c1548a1319f1bd0c0f263c

  • SHA512

    8cadebf8fce7dd58dc3dfdbf407239c2cd2c8202c9ab5edc05432222332bb6d4f4e3f1a8f24c589f50e8fac854b3082856894a8c519bc242f7dcb42d4b8be54d

  • SSDEEP

    1536:f1qE+J7RXsLkZ+GsOafeHDJosa36XfOfph3ODZ9W8pOGEWdAKMt0uStUX/:dq/SgZvafEKsm6XfmODZ4GRAxt0Za

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\42c089c7281e320b178efa09095ab915.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2228

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    dd94110de5b7e1215d9b41ef1a2225ef

    SHA1

    37321196087af9e57f455b07f1c549a6c6d8dbd3

    SHA256

    95515b969bb0a9cd558a6b5c07b36d12c8bc7c07407ca70bf56659a5c0d61f15

    SHA512

    2cc0add08f34e0b4fe65eed7a98aadeeae8d832eae95876d7b391d0a0e6ddd2d11fe3728c67435633df847a3ad1b5006970211664846e3f752d31e9c86d8e4e5

    Download Submit