Overview

overview

3

Static

static

3

4711c6b231...47.pdf

windows7-x64

1

4711c6b231...47.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    06-01-2024 20:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4711c6b2316f6e0a1d90082253573a47.pdf

  • Size

    88KB

  • MD5

    4711c6b2316f6e0a1d90082253573a47

  • SHA1

    d0a1b6f1531a77742f78b7f65eb456d5bcb8cb20

  • SHA256

    a8c0fc0192274d52711048ec0d9d7e4ea10b5501085e1d19b0a075288dca277f

  • SHA512

    5cebaa427d4abbfd4b50dc4d10ffc5b4e7a8ca5ca3f50dcbd8fc2b63cbcdae0c2f228f7f35708d4339d68c272d85470a699db3bff4c4695813ddd1e3a9a4507c

  • SSDEEP

    1536:DymMATC6cT/9APad0oiRypoM7lUK7CU1DL0c/iZYWZjyWGpOK46EiODWDTIYgjnl:2mMz5pAPadKyuOfzL0caZYWjbK7OiWnl

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4711c6b2316f6e0a1d90082253573a47.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2924

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    0fea168c734cecba3a8d318b32eeda41

    SHA1

    15fc4bdcce994232f1ce337a67eecc1579ab94a4

    SHA256

    522fe71df258e7fba4ab07f75c556953c3edb6a7bf082951dc818020a5f1e15b

    SHA512

    a3abd8f2ca8d1c223875c8dae8f2adfbd1052ade68f83d529f8c8a7e07609a90331e0c93506c92fcf5b16ababf9f6b4dbf73febab96dd1c535b18adca68f1868

    Download Submit