Overview

overview

3

Static

static

3

43d3820fa5...ea.pdf

windows7-x64

1

43d3820fa5...ea.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    118s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05-01-2024 13:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    43d3820fa52c96e6c2743ba1f4ec8bea.pdf

  • Size

    98KB

  • MD5

    43d3820fa52c96e6c2743ba1f4ec8bea

  • SHA1

    ac627cdb5fde363078810476b5857a947d24aa55

  • SHA256

    3c46d1807777507a0e7de0c47ad16c74602753812c2cff4bf518b27af80f2fd4

  • SHA512

    11dae4f989c83ef96d965314ab23d750a1c5faf0122dd7ec588bfb6a4af5a12c8d3f0120fff282e0ea4dda617c6cf0543d5391b26e030fde9fbb0a32360a1f0c

  • SSDEEP

    3072:eCl04CTpcp5mwDh2LBAPqTZTqWsqxC39pb1vi:3hCNcp5mwDh6BfZuf93a

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\43d3820fa52c96e6c2743ba1f4ec8bea.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2168

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    ed7f686fb260763a32bef93cb53feda6

    SHA1

    f55b7e3c8b112549a007f91b5d0818a8dbbc6cf7

    SHA256

    4b548ae9da8201049742e65a16489a0c4956f61904907648de95a852c62f3b27

    SHA512

    7c0a94974c4f6d54741f448071ff91f6667b3da0a2b40661c376f00f51a69af012e4e5403abe0b3bbe47c7be62bd4a9f97d7bf5ad8c8ef06d0d6053b114d29fb

    Download Submit