Overview

overview

3

Static

static

3

43ed7a786d...70.pdf

windows7-x64

1

43ed7a786d...70.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    05-01-2024 14:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    43ed7a786dbe5960858798db8cac2670.pdf

  • Size

    84KB

  • MD5

    43ed7a786dbe5960858798db8cac2670

  • SHA1

    27305575c1f4dfb2bf4187bc7226152519fb33c3

  • SHA256

    804e44dd43eeb3003ecd8c25f96aeaf90566522ddb5a850c934d4a4c555cd7d4

  • SHA512

    6d52ee9653dddbcff7be405beb57eaa90b92d67dd0e00e5c94db26af26311ca5e15cdb95206736eee7464eb2e08987ac8e449dd39f1ac89ba110e9e060023c12

  • SSDEEP

    1536:en6MQyGZO+uGIs4eVpEMjGXRnN1djdy0Tr7JOW+pH+0WCpOViEoxA:m61Xss4xDntjdy0/7JE+9ViET

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\43ed7a786dbe5960858798db8cac2670.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1672

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    5297970b874188420791136f886b5c74

    SHA1

    af77443c4c74df15613ff50da77081b01defa247

    SHA256

    1e63608560d00fe6194c59f644138f9b2ecb14b5b44423a4898f464618a1ed8e

    SHA512

    682d6bac3d8da5ef96a016ac2e59ea106b32c893baf65f714bab41125e4d14923c4d69205814322232ecdc6db8e0ff4fdf99d83e3ec245074931084ce6965552

    Download Submit